Thank you for clearing this up. What I am not understanding is why this fails. If anyone could help me figure this out would be greatly appreciated.
[files] path /etc/puppet/files allow_ip 10.0.0.0/8 But this works, [files] path /etc/puppet/files allow * It resulted in much hair loss. On Tuesday, October 23, 2012 9:55:16 AM UTC+11, Nick Fagerlund wrote: > > Hi everybody, > > This is a bug, and we're working on it. I'm about to update the auth.conf > docs with info about allow_ip. Additionally, have a complete workaround for > anyone being affected by this today. This offers complete equivalence to > the fileserver.conf behavior that worked in 2.x and broke in 3.0.0. > > **In fileserver.conf:** > > Put the name of your mount point, the path, and an `allow *` directive. > > [files] > path /etc/puppet/files > allow * > > **In auth.conf:** > > Use a regular expression path to match both the `file_metadata` and > `file_content` endpoints followed by the name of your custom mount point. > Then, use any combination of `allow` and `allow_ip` directives to control > access. > > path ~ ^/file_(metadata|content)/files/ > auth yes > allow /^(.+\.)?example.com$/ > allow_ip 192.168.100.0/24 > > **Effect:** > > This fully re-implements the previous behavior of the following > fileserver.conf: > > [files] > path /etc/puppet/files > allow *.example.com > allow 192.168.100.0/24 > > It does this by: > > * Allowing any request to fulfill fileserver.conf's requirements... > * ...but using auth.conf to ensure that only authorized requests ever > reach fileserver.conf. > > This pattern will be forward-compatible with whatever permanent fix we > implement for this bug. It's not very attractive, but it works. > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
