Project

General

Profile

Actions
Copy link

Architecture #26942

open

Add new settings to handle certificate trust

Added by Benoît PECCATTE 6 days ago. Updated 1 day ago.

Status:
Pending technical review
Priority:
N/A
Assignee:
Vincent MEMBRÉ
Category:
Web - Config management
Target version:
9.0.0~alpha1
Pull Request:
https://github.com/Normation/rudder/p...
Effort required:
Name check:
To do
Fix check:
To do
Regression:
No

Description

Add 3 new settings in rudder-web.properties that will be generated into 3 new values in policy's rudder.json files.
Here are what the 3 generated values must look like :

  • ADDITIONAL_POLICY_SERVER_KEY_HASH: list of key hashes, in the form [ "sha256//Pxjkq/Qlp02j8Q3ti3M1khEaUTL7Dxcz8sLOfGcg5rQ=", ... ], default empty
  • POLICY_SERVER_CERT_NAME_VALIDATION: boolean, default false
  • POLICY_SERVER_CERT_CA: pem certificate, default empty

Subtasks 2 (2 open0 closed)

Architecture #26950: Handle certificate trust in rudder-clientPending technical reviewAlexis MoussetActions
Architecture #26975: Generate rudder-client certificate authority before any rudder-client callPending technical reviewAlexis MoussetActions
Actions
Copy link
 #1

Updated by François ARMAND 6 days ago

  • Status changed from New to In progress
  • Assignee set to François ARMAND
Actions
Copy link
 #2

Updated by Benoît PECCATTE 5 days ago

  • Subtask #26950 added
Actions
Copy link
 #3

Updated by François ARMAND 5 days ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from François ARMAND to Vincent MEMBRÉ
  • Pull Request set to https://github.com/Normation/rudder/pull/6395
Actions
Copy link
 #4

Updated by Benoît PECCATTE 1 day ago

  • Subtask #26975 added
Actions
Copy link

Also available in: Atom PDF