[Puppet-dev] [PATCH/puppet 8/8] Convert the rack rest handler to the plugable auth system.

Signed-off-by: Brice Figureau --- lib/puppet/auth/handler/rack/ssl.rb | 18 lib/puppet/network/http/rack/rest.rb | 12 +- spec/unit/auth/handler/rack/ssl_spec.rb | 70 ++ spec/unit/network/http/rack/rest_spec.rb | 65 -

[Puppet-dev] [PATCH/puppet 4/8] Inject the correct network handler auth plugin

The idea is that the network handler only need to include this module that will delegate to the correct auth plugin. Signed-off-by: Brice Figureau --- lib/puppet/auth/handler.rb |4 lib/puppet/auth/handler/mongrel/ssl.rb |3 +++ spec/unit/auth/handler_spec.rb |

[Puppet-dev] [PATCH/puppet 6/8] Convert webrick network handler to the plugable auth system

This is just moving the SSL setup and the authentication to the new plugable auth system for webrick. Signed-off-by: Brice Figureau --- lib/puppet/auth/handler/webrick/ssl.rb | 39 ++ lib/puppet/network/http/webrick.rb | 26 +-- lib/puppet/network/http/webrick/rest.

[Puppet-dev] [PATCH/puppet 7/8] Convert the mongrel rest handler to the plugable auth system

Move the mongrel client authentication to the new auth plugin system. Signed-off-by: Brice Figureau --- lib/puppet/auth/handler/mongrel/ssl.rb | 14 +++ lib/puppet/network/http/mongrel/rest.rb | 13 +- spec/unit/auth/handler/mongrel/ssl_spec.rb | 57 ++

[Puppet-dev] [PATCH/puppet 5/8] Move resolve_node to Puppet::Auth::Handler

This is to prepare the next batch of commits. Signed-off-by: Brice Figureau --- lib/puppet/auth/handler.rb | 12 lib/puppet/network/http/handler.rb | 12 spec/unit/auth/handler_spec.rb | 31 ++- spec/unit/network

[Puppet-dev] [PATCH/puppet 3/8] Refactor master SSL setup to the ssl auth plugin

Move all SSL related stuff from the master puppet executable to the server auth plugin. Signed-off-by: Brice Figureau --- lib/puppet/application/master.rb | 19 +--- lib/puppet/auth/server/ssl.rb| 23 +++ spec/unit/application/master_spec.rb | 63 +++

[Puppet-dev] [PATCH/puppet 0/8] Experimental Plugable Puppet Authentication System

Hi, I'm proposing here an experimental refactoring that aims to bring a plugin system for authenticating puppet master and agent. For the moment, I just extracted the SSL bits of the master, the agent, the network http client, and the various web server we support. It is very rough and experiment

[Puppet-dev] [PATCH/puppet 2/8] Refactor ssl part of the agent and client http setup

Let's move all SSL related stuff from the agent and the http network client to the new ssl client class plugin. Signed-off-by: Brice Figureau --- lib/puppet/application/agent.rb | 12 +-- lib/puppet/auth/client/ssl.rb | 36 + lib/puppet/network/http_pool.rb | 19 +

[Puppet-dev] [PATCH/puppet 1/8] Pluggable authentication system

It allows with a single puppet settings (auth) to setup a complete different authentication scheme. Currently an authentication scheme is made of 3 components: * a client part for agent initialization and http client setup * a server part for master initialization * a network handler part runni