Page MenuHomeSoftware Heritage
Differential D1820

defaults: Move gpg/certificate blocks to a dedicated config file
ClosedPublic
Actions

Authored by ardumont on Aug 5 2019, 6:54 PM.

Details

Reviewers
anlambert
ftigeot
Group Reviewers
Reviewers
Commits
rSPSITE5c46ccfd0c36: defaults: Move gpg/certificate blocks to a dedicated config file
Summary

To:

  • avoid further errors when touching needed blank spaces
  • reduce the defaults.yaml's already too big size
Test Plan

bin/octocatalog <node>
Nothing new

Also tested live in staging environment and same. Nothing to complain.

Diff Detail

Repository
rSPSITE puppet-swh-site
Lint
Automatic diff as part of commit; lint not applicable.
Unit
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

ardumont created this revision.Aug 5 2019, 6:54 PM
Harbormaster completed remote builds in B7160: Diff 6129.Aug 5 2019, 6:54 PM
ardumont edited the test plan for this revision. (Show Details)Aug 5 2019, 6:56 PM
ardumont added a project: System administration.
ardumont added inline comments.Aug 6 2019, 10:28 AM
data/defaults.yaml
1

I don't like that name, i'll rename it to defaults_security.yaml.
We are dealing with public key/cert block, this is security related.
We are specifying that we trust those.

ardumont updated this revision to Diff 6131.Aug 6 2019, 10:31 AM

Rename defaults_gpg.yaml to defaults_security.yaml

Harbormaster completed remote builds in B7162: Diff 6131.Aug 6 2019, 10:31 AM
ardumont added a comment.Aug 6 2019, 10:34 AM

I've checked back (after the new modification) and bin/octocatalog is still happy.
It still does not want to touch anything.

data/defaults.yaml
1

that name

was defaults_gpg.yaml...

ftigeot accepted this revision.Aug 6 2019, 10:49 AM
This revision is now accepted and ready to land.Aug 6 2019, 10:49 AM
ardumont added a comment.Aug 6 2019, 10:58 AM

as @anlambert mentioned to me, maybe puppet could load those blocks from files, but let's check that later ;)

anlambert accepted this revision.Aug 6 2019, 11:21 AM

Looks good to me. This is helpful as I can't count the number of times the auto-trimming feature of my text editor removed those needed spaces.

I am also wondering if each GPG key / certificate could be put in a separate file then read by puppet and integrated in the YAML file.

ardumont updated this revision to Diff 6135.Aug 6 2019, 11:24 AM

Plug to production branch

Harbormaster completed remote builds in B7165: Diff 6135.Aug 6 2019, 11:24 AM
Closed by commit rSPSITE5c46ccfd0c36: defaults: Move gpg/certificate blocks to a dedicated config file (authored by ardumont). · Explain WhyAug 6 2019, 11:25 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
data/
661 lines
659 lines
2 lines

Diff 6136

View Options

data/defaults.yaml

Loading...
View Options

data/defaults_security.yaml

Loading...
View Options

hiera.yaml

Loading...
About · Developer information · Legal