[Puppet - Bug #7710] (Unreviewed) Impossible to set configuration settings owner/group to something different than root or service user

[tickets]

Issue #7710 has been reported by Brice Figureau.

----------------------------------------
Bug #7710: Impossible to set configuration settings owner/group to something 
different than root or service user
https://projects.puppetlabs.com/issues/7710

Author: Brice Figureau
Status: Unreviewed
Priority: Normal
Assignee: 
Category: settings
Target version: 
Affected Puppet version: 2.7.0rc3
Keywords: 
Branch: 


Since commit:06fcece75ef52168a73013eba2b8bfc50cf71c97 it isn't possible to 
specify a config file owner/group different than root or the service user:
<pre>
[agent]
lastrunfile = /tmp/lastrun.yml { mode=0664, owner=monitoring, group=nogroup }
</pre>
will fail when running the agent with:
<pre>
./lib/puppet/util/settings/file_setting.rb:33:in `owner=': Internal error: The 
:owner setting for Where puppet agent stores the last run report summary in 
yaml format.: lastrunfile: $statedir/last_run_summary.yaml must be either 
'root' or 'service', not 'daemon' 
(Puppet::Util::Settings::FileSetting::SettingError)
        from ./lib/puppet/util/settings.rb:928:in `send'
        from ./lib/puppet/util/settings.rb:928:in `set_metadata'
        from ./lib/puppet/util/settings.rb:927:in `each'
        from ./lib/puppet/util/settings.rb:927:in `set_metadata'
        from ./lib/puppet/util/settings.rb:926:in `each'
        from ./lib/puppet/util/settings.rb:926:in `set_metadata'
        from ./lib/puppet/util/settings.rb:357:in `unsafe_parse'
        from ./lib/puppet/util/settings.rb:353:in `each'
        from ./lib/puppet/util/settings.rb:353:in `unsafe_parse'
        from ./lib/puppet/util/settings.rb:299:in `parse'
        from 
/Users/brice/.rvm/rubies/ruby-1.8.7-p334/lib/ruby/1.8/sync.rb:230:in 
`synchronize'
        from ./lib/puppet/util/settings.rb:298:in `parse'
        from ./lib/puppet/application.rb:303:in `run'
        from ./lib/puppet/application.rb:411:in `exit_on_fail'
        from ./lib/puppet/application.rb:303:in `run'
        from ./lib/puppet/util/command_line.rb:62:in `execute'
        from bin/puppet:4
</pre>

It might have been done by design to prevent some important settings (like ca 
files) to not be created as a user that puppet won't be able to read anymore. 
But using this prevents us to use this feature as a more generic system of 
specifying file attributes, and manage those files.

I propose to not fix the list of allowed owner/group globally, but move this to 
all the settings defined in the defaults.rb.
Comments?



-- 
You have received this notification because you have either subscribed to it, 
or are involved in it.
To change your notification preferences, please click here: 
http://projects.puppetlabs.com/my/account

-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Bugs" group.
To post to this group, send email to puppet-bugs@googlegroups.com.
To unsubscribe from this group, send email to 
puppet-bugs+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/puppet-bugs?hl=en.