On 27.05.2014 08:00, Hugh Cole-Baker wrote:
On Tuesday, 27 May 2014 12:56:05 UTC+1, Jeremy wrote:
This actually sounds like a useful tool. Is this something you're
(or
would) consider releasing as OSS for others to make use of?
I've put my autosign script up on a GitHub gist and at least one
other
has considered it useful so I've included a header releasing it
under
Apache 2.0 license.
It's a bit complicated with code to do various other things that our
infrastructure needs, and it makes some assumptions (for example we
always use <group name>-<instance ID> for our hostnames, so instances
in "mygroup" are always named things like "mygroup-abcd1234", which
avoids us having to call the EC2 API to find the hostname), but I
will
see if I can separate out the useful parts and publish them.
Yeah I can understand that. My autosign script made use of the instance
id being embedded as an extra attribute within the CSR. It left out
anything specific in processing beyond showing how to pull the instance
id from the CSR and validate it was a valid running instance using Fog.
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to puppet-users+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/puppet-users/5e99cd0c29d55a61c0bf5bd1a405eb2e%40undergrid.net.
For more options, visit https://groups.google.com/d/optout.
