Project

General

Profile

Feature #23211

PuppetCA: Token Based Autosigning

Added by Julian Todt 8 months ago. Updated 3 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
PuppetCA
Target version:
-
Team Backlog:
Fixed in Releases:
Found in Releases:

Description

For idea and discussion, see https://community.theforeman.org/t/puppetca-orchestration-the-future-of-autosigning/8712 and https://github.com/theforeman/rfcs/pull/7/files

Todo:
- Remove previous autosigning functionality (mainly /puppet/ca/autosign endpoints)
- Add new api endpoint that takes the CSR, extracts our previously placed tokens and sends it to foreman
- Add puppet autosigning script that calls the SmartProxy to foreman or foreman-proxy puppet modules
- Update PuppetCA-SmartProxy documentation


Related issues

Related to Foreman - Feature #23210: PuppetCA: Token Based AutosigningClosed
Related to Installer - Feature #23477: PuppetCA: Token Based AutosigningReady For Testing

Associated revisions

Revision 124af3d4 (diff)
Added by Julian Todt 4 months ago

Fixes #23211 - Add PuppetCa TokenWhitelisting provider

Revision 74ae90e0 (diff)
Added by Timo Goebel 3 months ago

refs #23211 - make PuppetCA token provider more resilient

History

#1 Updated by Julian Todt 8 months ago

#2 Updated by The Foreman Bot 8 months ago

  • Pull request https://github.com/theforeman/smart-proxy/pull/576 added

#3 Updated by Julian Todt 8 months ago

#4 Updated by The Foreman Bot 6 months ago

  • Status changed from Assigned to Ready For Testing
  • Pull request https://github.com/theforeman/smart-proxy/pull/592 added

#5 Updated by Timo Goebel 4 months ago

  • Fixed in Releases 1.20.0 added
  • Pull request deleted (https://github.com/theforeman/smart-proxy/pull/576)

#6 Updated by Julian Todt 4 months ago

  • Status changed from Ready For Testing to Closed

#7 Updated by The Foreman Bot 3 months ago

  • Pull request https://github.com/theforeman/smart-proxy/pull/607 added

Also available in: Atom PDF