Project

General

Profile

Actions
Copy link

Architecture #26942

open

Add new settings to handle certificate trust

Added by Benoît PECCATTE 28 days ago. Updated 7 days ago.

Status:
Pending technical review
Priority:
N/A
Assignee:
Vincent MEMBRÉ
Category:
Web - Config management
Target version:
9.0.0~alpha1
Pull Request:
https://github.com/Normation/rudder/p...
Effort required:
Name check:
To do
Fix check:
To do
Regression:
No

Description

Add 2 new settings in rudder-web.properties that will be generated into 3 new values in policy's rudder.json files.
Here are what the 2 generated values must look like :

  • POLICY_SERVER_CERT_NAME_VALIDATION: boolean, default false
  • POLICY_SERVER_CERT_CA: pem certificate, default empty

Chabge 1 generated property to match

  • POLICY_SERVER_KEY_HASH: list of key hashes, in the form "sha256//Pxjkq/Qlp02j8Q3ti3M1khEaUTL7Dxcz8sLOfGcg5rQ=;sha256//..."

Subtasks 2 (2 open0 closed)

Architecture #26950: Handle certificate trust in rudder-clientPending technical reviewAlexis MoussetActions
Architecture #26975: Generate rudder-client certificate authority before any rudder-client callPending technical reviewAlexis MoussetActions
Actions
Copy link
 #1

Updated by François ARMAND 27 days ago

  • Status changed from New to In progress
  • Assignee set to François ARMAND
Actions
Copy link
 #2

Updated by Benoît PECCATTE 27 days ago

  • Subtask #26950 added
Actions
Copy link
 #3

Updated by François ARMAND 27 days ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from François ARMAND to Vincent MEMBRÉ
  • Pull Request set to https://github.com/Normation/rudder/pull/6395
Actions
Copy link
 #4

Updated by Benoît PECCATTE 23 days ago

  • Subtask #26975 added
Actions
Copy link
 #5

Updated by Benoît PECCATTE 7 days ago

  • Description updated (diff)
Actions
Copy link

Also available in: Atom PDF