On Sun, Apr 7, 2013 at 5:07 AM, Peter Meier <[email protected]> wrote:
> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > So in order to get the trusted name we should create a top level > > hash named “trusted”, with a key called “nodename”. > > I think this a good idea. However, I don't really like the name, I > think it's not specific enough and is confusing for people who do not > understand, why this a trusted value while facts aren't. But I don't > have something better to propose. > > We batted around a few here as well and didn't come up with anything better :) > Maybe we should think a little bit more about what kind of data should > go into that hash. Yes trusted data, but maybe we can find a better > description for it that makes it more unique and more specific. > > I was thinking that we could put other things about the certificate (subject, etc.). I was thinking that we might even have a way for users to define extensions to add site specific data. > > I think that this should be done without modifying the > > Puppet::Node class/object and instead we just inject this one top > > level variable in the compiler. > > And we need to ensure, that it can't be overwritten by any client > sending a fact called trust. But I think that's quite obvious ;) > > Maybe obvious but a good thing to test :) > ~pete > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ > > iEYEARECAAYFAlFhYXoACgkQbwltcAfKi3+UfwCZAVyqjJ2q2gNd5XrRC+dLQcrL > 7+IAoKQq7pu7+YurzoyHiJtbd5CSAZC6 > =BzkF > -----END PGP SIGNATURE----- > > -- > You received this message because you are subscribed to the Google Groups > "Puppet Developers" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at http://groups.google.com/group/puppet-dev?hl=en. > For more options, visit https://groups.google.com/groups/opt_out. > > > -- Andrew Parker [email protected] Freenode: zaphod42 Twitter: @aparker42 Software Developer *Join us at PuppetConf 2013, August 22-23 in San Francisco - * http://bit.ly/pupconf13* **The first 150 tickets sold will be available at a 35% discount - register now!* -- You received this message because you are subscribed to the Google Groups "Puppet Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-dev?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
