Module: Autosign

Defined in:
lib/autosign.rb,
lib/autosign/token.rb,
lib/autosign/config.rb,
lib/autosign/decoder.rb,
lib/autosign/journal.rb,
lib/autosign/version.rb,
lib/autosign/validator.rb,
lib/autosign/validator/jwt.rb,
lib/autosign/validator/multiplexer.rb,
lib/autosign/validator/passwordlist.rb,
lib/autosign/validator/validator_base.rb

Overview

Autosign facilitates SSL certificate autosigning in Puppet. The overall flow of data is:

When executed by puppet to validate certificate signing requests:

  1. Puppet runs bin/autosign-validator with the requested certname as the parameter and the X509 CSR in STDIN

  2. bin/autosign-validator uses Autosign::Decoder to extract key data from the CSR, then

  3. Uses Autosign::Validator.any_validator to send the CSR to each available validator.

  4. Autosign::Validator.any_validator calls each of its’ child classes, and returns true if any validator succeeds.

  5. bin/autosign-validator exits with exit code 0 if validation succeeded, or exit code 1 if validation failed.

Defined Under Namespace

Modules: Exceptions, Validator Classes: Config, Decoder, Journal, Token

Constant Summary collapse

VERSION = 
'1.0.1'