Actions
Bug #6614
closed
User story #6553: Allow rudder server to remotely run the agent
cf-serverd.cf is broken because of missing promise type
Pull Request:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
Name check:
Fix check:
Regression:
Description
When generating promises on 2.11.11 :
⇨ cf-promise check fails for promises generated at '/var/rudder/share/e19c5e00-4eda-4e97-a58c-07d4c3b30bca.new/rules/cfengine-community' ⇨ /var/rudder/share/e19c5e00-4eda-4e97-a58c-07d4c3b30bca.new/rules/cfengine-community/common/1.0/cf-served.cf:27:9: error: syntax error ⇨ any:: ⇨ ^ ⇨ /var/rudder/share/e19c5e00-4eda-4e97-a58c-07d4c3b30bca.new/rules/cfengine-community/common/1.0/cf-served.cf:27:9: error: Expected promise type, got 'any::' ⇨ any:: ⇨ ^ [...] ⇨ Too many errors
The generated file contains :
bundle server access_rules
{
any::
# Allow server to remotely run the agent
"/var/rudder/cfengine-community/bin/cf-agent"
admit => { host2ip("${server_info.cfserved}"), string_downcase(escape("${server_info.cfserved}")) };
roles:
# Allow user root to set any class
".*" authorize => { "root" };
}
which lacks the "access" promise type. This appears to be caused by https://github.com/Normation/rudder-techniques/pull/664, the promise type "access" should be moved before &if(CLIENTSLIST)&.
Updated by 
Updated by 
Updated by 
Updated by 
Updated by Matthieu CERDA
Actions