| Commit message (Collapse) | Author | Age | Files | Lines |
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
We should favour "-trusted" over "-CAfile" because it will skip the system-wide
CAs and ensure that the certificate is relay validated against the specified
CA.
For validation against an intermediate certificate, only an additional
"-partial_chain" is required. With "-untrusted" we previously added an
unstrusted intermediate certificate only and validated the cert against default
system wide installed CAs.
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The DirectoryBacked helper now does not recurse into directories that
contains a .bcfg2-ignore file. This makes it possible to ignore some
directories for most plugins (Bundler, Defaults, Pkgmgr, Properties,
PuppetENC, TemplateHelper, Trigger). You can store for example a python
module used by a TemplateHelper in the same directory, without getting
strange error messages while TemplateHelper is trying to import each
single file of this module.
|
| | |
| | |
| | |
| | | |
This backend will not add any packages.
|
| | |
| | |
| | |
| | |
| | |
| | | |
The messages of the packages in the packagesite file may be encoded in
any encoding. We only need the dependencies and just ignore the unicode
errors.
|
| |/
|/|
| |
| | |
The Bundle do not need to be bound by another plugin.
|
| |
| |
| |
| | |
unicode in py3.
|
| |
| |
| |
| |
| | |
When importing packages we should not pollute the global modules
namespace and always import new modules with their package name.
|
| | |
|
|\ \ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
If the module name contains slashes, python will issue an warning:
> Ldap/config.py:1: RuntimeWarning: Parent module '__Ldap_/root/repo/Ldap/config' not found while handling absolute import
> from Bcfg2.Server.Plugins.Ldap import LdapConnection, LdapQuery
So we simply use the basename without the file extension for the module name.
|
| | |
| | |
| | |
| | |
| | |
| | | |
You can now set arbitrary ldap option for the connection by specifying
a dict with the key and the value. You should use the constants from
python-ldap.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
You can now specify the server to connect by either host (and optionally
port) or by specifying the full ldap uri. If you specify host and port
the connection will use the plain (unencrypted) ldap protocol by default.
Only if you specify the port "636", it will use ldaps now.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Using the OnDemandDict removes the results of Ldap queries from the
client_metadata cache. We add a new cache per hostname cache for the
single ldap queries and add a new configuration option to enable
caching until the cache is expired manually via XML-RPC.
|
| | | |
|
| | | |
|
| | |
| | |
| | |
| | |
| | | |
With the CallableDict the LdapQueries will only be executed, if the values
are used.
|
| | |
| | |
| | |
| | |
| | |
| | | |
Add a CallableDict (like OnDemandDict, but without caching the results)
to have a dict-like class, that can be cached with the client metadata
without caching the dynamic values.
|
| | |
| | |
| | |
| | | |
Now you can also specify simple values for the OnDemandDict.
|
| | |
| | |
| | |
| | | |
The OnDemandDict could be used by different plugins.
|
| | |
| | |
| | |
| | |
| | |
| | | |
This line brakes django detection for the Probes! It resets the global
variable just after the detection. This line was left while changing
the placement of the detection in fa0d86aba32c40d829f9f94411403221a48283e8.
|
|/ /
| |
| |
| |
| | |
It seems to be, that there must not be any Python statement before the
magic comment.
|
| | |
|
| | |
|
|\ \
| | |
| | | |
Fix bcfg2-report-collector for django-1.9
|
| | |
| | |
| | |
| | |
| | |
| | | |
If required the DBSettings config hook will call django.setup right after
configuring django with the required settings. So we can drop the calls to
django.setup from all other places.
|
|\ \ \
| | | |
| | | | |
Lint: Some fixes of the required attributes
|
| | | | |
|
| | | | |
|
| | | |
| | | |
| | | |
| | | |
| | | | |
owner, group and mode are required for all path entries representing files
or directories.
|
| | | | |
|
| |/ / |
|
| | | |
|
|/ /
| |
| |
| |
| |
| |
| |
| |
| | |
The default group file should be included, even if no server is in
the 'default' hostgroup. It allows to include global definitions
(like a service template).
The behaviour is documented and was broken by
590a1314bca44f29fc34bd27f0d49599b7eeab10.
|
|\ \
| | |
| | | |
Cfg: Fix SSLCA key generation
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The previous check resulted in a "FutureWarning" and also did not work
as expected and reset the key values in every case.
Signed-off-by: Sol Jerome <sol.jerome@gmail.com>
|
|/ /
| |
| |
| |
| |
| | |
The pkgnames should be reset before parsing the source files. If a package was
removed for a source, it should be removed from the pkgnames set, too. The
packages plugin should look for the next source containing the package.
|
| |
| |
| |
| | |
Signed-off-by: Sol Jerome <sol.jerome@gmail.com>
|
|\ \ |
|
| | | |
|
| | | |
|
|\ \ \ |
|
| |/ /
| | |
| | |
| | | |
This reverts commit 8bcd3b7d717186f14bdd2482e46c2a6feee51767.
|
|\ \ \ |
|
| |/ / |
|
|/ / |
|
|\ \
| | |
| | | |
Add support for rawurl in Apt
|
| | | |
|
|/ /
| |
| |
| |
| | |
Double underscore mark anonymous hyperlinks. To include '__' literally
we need to escape it.
|