Issue #5528 has been updated by Matt Robinson. Branch changed from https://github.com/rcrowley/puppet/tree/feature/master/5528-certificates_signing_api to https://github.com/MaxMartin/puppet/commits/feature%2Fmaster%2F5528-certificates_signing_api
My how the time has flown and the fun has been had on this ticket. At some point or another 6 different people have paired on this code and a few others have had design input. Max and I have spent the most time on this and think we have the attached branch in a state that is pretty good. The code was *mostly* working in the state Richard and Luke got it to quickly on the first few days, but getting it to a point where the tests were useful and the code was readable and understable was a big learning experience for those who hadn't mucked around in this area of the code before. In the end we decided to call the REST endpoint certificate_status as suggested in the wiki documentation (https://projects.puppetlabs.com/projects/puppet/wiki/Certificate_Authority_Rest_API) since it was in line with most of the other REST endpoints and felt consistent. At some point Luke and Richard had it named ssl_client, but I found that extremely confusing since it's not really a client / host relationship at all anywhere with the endpoint. Luke also suggested ssl_identity since the endpoint really has something to do with keys, certificates, certificate_requests, revocation_lists, and fingerprints. Max is sending the commits out to the list right now, but we're not merging it until we get some more review. Jacob is reviewing the code side of things and NickF is going to review the UI and docs. ---------------------------------------- Feature #5528: API call to sign, clean or generate certificate request https://projects.puppetlabs.com/issues/5528 Author: James Turnbull Status: Accepted Priority: High Assignee: Category: API Target version: Statler Affected Puppet version: Keywords: API certificate SSL generate clean sign Branch: https://github.com/MaxMartin/puppet/commits/feature%2Fmaster%2F5528-certificates_signing_api Proposal from James: SIGN <pre> Certificate Request PUT /{environment}/certificate_requests/sign/{anything} PUT /{environment}/certificate_request/sign/{node certificate name} curl -k -H "Accept: yaml" https://puppetmaster:8140/production/certificate_requests/sign/all curl -k -H "Accept: yaml" https://puppetmaster:8140/production/certificate_request/sign/puppetclient </pre> CLEAN <pre> Certificate Request PUT /{environment}/certificate_requests/clean/{anything} PUT /{environment}/certificate_request/clean/{node certificate name} curl -k -H "Accept: yaml" https://puppetmaster:8140/production/certificate_requests/clean/all curl -k -H "Accept: yaml" https://puppetmaster:8140/production/certificate_request/clean/puppetclient </pre> GENERATE <pre> Certificate Request GET /{environment}/certificate_request/generate/{node certificate name} curl -k -H "Accept: yaml" https://puppetmaster:8140/production/certificate_request/generate/puppetclient </pre> -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
