[PATCH/RFC] func: Simplify minion.conf creation

Todd Zullinger tmz at pobox.com
Fri Sep 3 15:48:12 UTC 2010

seth vidal wrote:
> okay - I've found a usecase for this, now.
> bxen04 was renamed from another name - the make-minion-conf never
> got reran so func was just not working.. If it was a thing in puppet
> it would have been working.
> so... seems like your recommendation is a good one.

Apologies for not getting it tested on people1 like we talked about
the other day.  Work took precedence.  But, I did find a nice hole in
my current patch when I deployed it in another environment.  The
Puppet[:hostcert] and Puppet[:hostprivkey] get evaluate by the puppet
master, and end up being invalid on the clients.  I ended up using:

    cert_file = <%= Puppet[:certdir] %>/<%= fqdn %>.pem
    key_file = <%= Puppet[:privatekeydir] %>/<%= fqdn %>.pem

in my environment, but that's not quite as nice as I'd envisioned.
(And, of course, your test plan was well founded.  I should know
better.  I'm glad you did. :)

I'll hopefully have time to update the patch in infrastructure and
test this on people1 in the next few days.  I'll ping you on irc
before I do so, to make sure someone is around in case it doesn't work
out.  I have deployed this at work though, and it's working nicely
there, so I'm more confident.

Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
I never forget a face, but in your case I'll be glad to make an
    -- Groucho Marx

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/infrastructure/attachments/20100903/193e01f4/attachment.bin 

More information about the infrastructure mailing list