Signed-off-by: Brice Figureau
---
lib/puppet/auth/handler/rack/ssl.rb | 18
lib/puppet/network/http/rack/rest.rb | 12 +-
spec/unit/auth/handler/rack/ssl_spec.rb | 70 ++
spec/unit/network/http/rack/rest_spec.rb | 65 -
The idea is that the network handler only need to include this module
that will delegate to the correct auth plugin.
Signed-off-by: Brice Figureau
---
lib/puppet/auth/handler.rb |4
lib/puppet/auth/handler/mongrel/ssl.rb |3 +++
spec/unit/auth/handler_spec.rb |
This is just moving the SSL setup and the authentication to
the new plugable auth system for webrick.
Signed-off-by: Brice Figureau
---
lib/puppet/auth/handler/webrick/ssl.rb | 39 ++
lib/puppet/network/http/webrick.rb | 26 +--
lib/puppet/network/http/webrick/rest.
Move the mongrel client authentication to the new auth plugin
system.
Signed-off-by: Brice Figureau
---
lib/puppet/auth/handler/mongrel/ssl.rb | 14 +++
lib/puppet/network/http/mongrel/rest.rb | 13 +-
spec/unit/auth/handler/mongrel/ssl_spec.rb | 57 ++
This is to prepare the next batch of commits.
Signed-off-by: Brice Figureau
---
lib/puppet/auth/handler.rb | 12
lib/puppet/network/http/handler.rb | 12
spec/unit/auth/handler_spec.rb | 31 ++-
spec/unit/network
Move all SSL related stuff from the master puppet executable
to the server auth plugin.
Signed-off-by: Brice Figureau
---
lib/puppet/application/master.rb | 19 +---
lib/puppet/auth/server/ssl.rb| 23 +++
spec/unit/application/master_spec.rb | 63 +++
Hi,
I'm proposing here an experimental refactoring that aims to bring
a plugin system for authenticating puppet master and agent.
For the moment, I just extracted the SSL bits of the master, the
agent, the network http client, and the various web server we support.
It is very rough and experiment
Let's move all SSL related stuff from the agent and the http
network client to the new ssl client class plugin.
Signed-off-by: Brice Figureau
---
lib/puppet/application/agent.rb | 12 +--
lib/puppet/auth/client/ssl.rb | 36 +
lib/puppet/network/http_pool.rb | 19 +
It allows with a single puppet settings (auth) to setup a complete
different authentication scheme.
Currently an authentication scheme is made of 3 components:
* a client part for agent initialization and http client setup
* a server part for master initialization
* a network handler part runni