Actions
Feature #9950
closed
Add default RHEL / Fedora scap contents to foreman_scap_client and seed in foreman_openscap
Difficulty:
medium
Triaged:
No
Bugzilla link:
Description
We'd like to ease the use of the default scap-security-guide xml files.
The scenario is:
scap-security-guide xml files are on the client host.
A user creates policies on Foreman. The policies' data is synced via puppet to the client host.
The user does not need to copy / move scap-security-guide xml files to /var/lib/openscap/content/<digest>.xml
- Add scap-security-guide as an RPM dependency to foreman_scap_client RPM
- Post install creates a symlink between the security guide xmls to /var/lib/openscap/content/<digest>.xml:
- Extract scap-security-guide xml digest
- symlink scap-security-guide xml to /var/lib/openscap/content/<digest>.xml
- Add scap-security-guide as an RPM dependency to rubygem-foreman_openscap RPM
- A seed which automatically creates a Scaptimony::ScapContent with the contents of the scap-security-guide
Updated by Shlomi Zadok about 9 years ago
foreman_scap_client:
https://github.com/OpenSCAP/foreman_scap_client/pull/8
and packaging: https://github.com/theforeman/foreman-packaging/pull/614
Updated by Shlomi Zadok about 9 years ago
- Assignee changed from Shlomi Zadok to Steve Loranz
Updated by Marek Hulán almost 9 years ago
While this seems to be present, it contains a bug. If database already contains content with the same digest it fails. If I rerun seed task it conflicts even with the content created by previous run.
Updated by Shlomi Zadok almost 9 years ago
- Status changed from New to Ready For Testing
- Assignee changed from Steve Loranz to Shlomi Zadok
- Pull request https://github.com/theforeman/foreman_openscap/pull/112 added
- Pull request deleted (
)
Updated by Marek Hulán almost 9 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Actions