Issue #7710 has been updated by James Turnbull.
+1. ---------------------------------------- Bug #7710: Impossible to set configuration settings owner/group to something different than root or service user https://projects.puppetlabs.com/issues/7710 Author: Brice Figureau Status: Unreviewed Priority: Normal Assignee: Category: settings Target version: Affected Puppet version: 2.7.0rc3 Keywords: Branch: Since commit:06fcece75ef52168a73013eba2b8bfc50cf71c97 it isn't possible to specify a config file owner/group different than root or the service user: <pre> [agent] lastrunfile = /tmp/lastrun.yml { mode=0664, owner=monitoring, group=nogroup } </pre> will fail when running the agent with: <pre> ./lib/puppet/util/settings/file_setting.rb:33:in `owner=': Internal error: The :owner setting for Where puppet agent stores the last run report summary in yaml format.: lastrunfile: $statedir/last_run_summary.yaml must be either 'root' or 'service', not 'daemon' (Puppet::Util::Settings::FileSetting::SettingError) from ./lib/puppet/util/settings.rb:928:in `send' from ./lib/puppet/util/settings.rb:928:in `set_metadata' from ./lib/puppet/util/settings.rb:927:in `each' from ./lib/puppet/util/settings.rb:927:in `set_metadata' from ./lib/puppet/util/settings.rb:926:in `each' from ./lib/puppet/util/settings.rb:926:in `set_metadata' from ./lib/puppet/util/settings.rb:357:in `unsafe_parse' from ./lib/puppet/util/settings.rb:353:in `each' from ./lib/puppet/util/settings.rb:353:in `unsafe_parse' from ./lib/puppet/util/settings.rb:299:in `parse' from /Users/brice/.rvm/rubies/ruby-1.8.7-p334/lib/ruby/1.8/sync.rb:230:in `synchronize' from ./lib/puppet/util/settings.rb:298:in `parse' from ./lib/puppet/application.rb:303:in `run' from ./lib/puppet/application.rb:411:in `exit_on_fail' from ./lib/puppet/application.rb:303:in `run' from ./lib/puppet/util/command_line.rb:62:in `execute' from bin/puppet:4 </pre> It might have been done by design to prevent some important settings (like ca files) to not be created as a user that puppet won't be able to read anymore. But using this prevents us to use this feature as a more generic system of specifying file attributes, and manage those files. I propose to not fix the list of allowed owner/group globally, but move this to all the settings defined in the defaults.rb. Comments? -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
