Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(MAINT) SSL Verification extended #504

Merged
merged 5 commits into from
Sep 23, 2024
Merged

(MAINT) SSL Verification extended #504

merged 5 commits into from
Sep 23, 2024

Conversation

CoMfUcIoS
Copy link
Contributor

@CoMfUcIoS CoMfUcIoS commented Sep 23, 2024
edited
Loading

Summary

  • Changed SSL verification mode to VERIFY_PEER for enhanced security.
  • Added Puppet settings initialization to load necessary certificates.
  • Updated HTTP request to use Puppet's certname and certificate files.
  • Ensured CA file is set for SSL verification.

Checklist

  • 🟢 Spec tests.
  • 🟢 Acceptance tests.

Changes include test coverage?

  • Yes
  • Not needed

Have you updated the documentation?

  • Yes, I've updated the appropriate docs
  • Not needed

@CoMfUcIoS
(MAINT) update SSL verification and certificate handling
7cac8d4 
- Changed SSL verification mode to VERIFY_PEER for enhanced security.
- Added Puppet settings initialization to load necessary certificates.
- Updated HTTP request to use Puppet's certname and certificate files.
- Ensured CA file is set for SSL verification.
@CoMfUcIoS
fix(rbac_token): correct syntax errors in SSL configuration
a60cc10 
- Fixed incorrect syntax in Net::HTTP initialization.
- Corrected method calls for SSL setup and certificate handling.
- Ensured proper request initialization for RBAC token generation.
@CoMfUcIoS
fix(rbac_token): correct Net::HTTPSuccess class reference
07463ed 
- Fixed incorrect reference to Net::HTTPSuccess class in token request error handling.
@CoMfUcIoS CoMfUcIoS requested review from a team as code owners September 23, 2024 10:10
@CoMfUcIoS CoMfUcIoS changed the title Ssl more (MAINT) SSL Verification extended Sep 23, 2024
@CoMfUcIoS
fix(rbac_token): correct typo in Net::HTTP::Post initialization
e3ae941 
Corrected the typo in the initialization of Net::HTTP::Post for creating the RBAC token request. This ensures the correct HTTP method is used for the request.
@CoMfUcIoS
fix(get_peadm_config): use Puppet certname instead of localhost for H…
04595e8 
…TTPS connection

Changed the HTTPS connection to use Puppet's certname instead of 'localhost' to ensure proper SSL certificate validation.
ragingra
ragingra approved these changes Sep 23, 2024
View reviewed changes
Copy link
Member

@ragingra ragingra left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tested both changes!

@CoMfUcIoS CoMfUcIoS merged commit 9cbef67 into puppetlabs:main Sep 23, 2024
68 checks passed
@CoMfUcIoS CoMfUcIoS deleted the SSLMore branch September 23, 2024 17:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ragingra ragingra ragingra approved these changes

Assignees
No one assigned
Labels
maintenance
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@CoMfUcIoS @ragingra