On 10/19/2012 12:44 AM, Forrie wrote:
I've just built a staging system, to work out the issues I've been
having with Puppet 3.x. We now have 3.0.1 installed there.
I am again running into this fileserver issue and the same errors. I
read through some complaints here and I see mention that auth.conf is
only able to use allow_ip. In that file, I have "allow *" under "path
/file" which should allow everyone. I read that the allow_ip is not
yet working for fileserver.conf. My fileserver.conf has "allow
192.168.0.0/24" which was working until the upgrade.
So, can someone explain to me in plain english how we're supposed to get
this working properly now. I read through more notes and I don't see
mention of this in upgrading, etc. Perhaps I missed something -- I
just want to get it working. If it's an outstanding but that is
preventing Puppet from working right now, I would think this would be a
high-priority fix :-)
I would be interested too, because I've hit the same problem with both
3.0.0 and 3.0.1:
This is my /etc/puppet/fileserver.conf:
[files]
path /etc/puppet/files
deny *
allow *
And client says:
Could not evaluate: Error 400 on SERVER: Not authorized to call find on
/file_metadata/files/users/home/user/jsosic Could not retrieve file
metadata for puppet:///files/users/home/user/jsosic: Error 400 on
SERVER: Not authorized to call find on
/file_metadata/files/users/home/user/jsosic
I've tried:
chown -R puppet:puppet /etc/puppet/files
just in case, but no luck.
Solution I found so far is to remove "deny *" and leave only "allow *".
"allow 192.168.0.0/16" doesn't work too. So this is definitely broken in
many ways.... Documentation clearly says "allow takes precedence".
Anyway, this is just testing installation so I'll leave it as is... My
fileserver.conf looks like this now:
[files]
path /etc/puppet/files
allow *
and that works...
--
Jakov Sosic
www.srce.unizg.hr
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
