[Puppet Users] puppet 4: webserver configuration

Mon, 15 Jun 2015 09:43:04 -0700 

Hi!

I'm trying to configure webserver via conf.d/webserver.conf  . 

The purpose is to add an extra web resource called 'secure-store' that can be 
used later in 'file' resource type.  

This is how webserver.conf  looks at the moment: 

webserver: {
  default: {
    access-log-config = /etc/puppetlabs/puppetserver/request-logging.xml
    client-auth = want
    ssl-host = 0.0.0.0
    ssl-port = 8140
    default-server: true
  }

  secure-store: {
    access-log-config = /etc/puppetlabs/puppetserver/request-logging.xml
    ssl-host = 0.0.0.0
    ssl-port = 8141
    ssl-cert = /etc/puppetlabs/puppet/ssl/certs/p4server.site.pem
    ssl-key = /etc/puppetlabs/puppet/ssl/private_keys/p4server.site.pem
    ssl-ca-cert = /etc/puppetlabs/puppet/ssl/ca/ca_crt.pem
    client-auth = need
    static-content: [{resource: "/etc/puppetlabs/code/secure_store/"
                      path:     "/secure-store"}]

  }
}

I can easily get files from there with curl :

# curl -k --key ./private_keys/p4agent.site.pem --cert ./certs/p4agent.site.pem 
 https://p4server:8141/secure-store/testtest.txt

But I cannot get anything using 'file' resource type in my manifests:

This is how it looks: 

  file { '/tmp/testfile.txt':
    ensure  => present,
    owner   => root,
    group   => root,
    mode    => '0700',
    source => 'puppet://p4server.site:8141/secure-store/testtest.txt'
  }

I see the following error when I try to run it: 

Error: /Stage[main]/Testfile/File[/tmp/testfile.txt]: Could not evaluate: Could 
not retrieve information from environment production source(s) 
puppet://p4server.site:8141/secure-store/testtest.txt

And the following record in puppetserver-access.log:

 "GET 
/puppet/v3/file_metadata/secure-store/testtest.txt?environment=production&links=manage&checksum_type=md5&source_permissions=ignore
 HTTP/1.1" 0 0 p4agent.site 172.16.15.12 8141 1

Could anyone please tell if I'm doing anything completely wrong or I 
misunderstood the idea of webserver thing regarding new puppet server ?

Thanks in advance. 

--
Best regards,
Sergey Arlashin







-- 
You received this message because you are subscribed to the Google Groups 
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/d/msgid/puppet-users/BA40F1D1-EDDA-4EBE-B131-B49456929B3F%40gmail.com.
For more options, visit https://groups.google.com/d/optout.

Reply via email to