HomePhorge
Diffusion puppet 057cda625600

(#9508) Default ACL of `auth any` makes sense where we had `auth no`
057cda625600Unpublished
Actions

Unpublished Commit ยท Learn More

Repository Importing: This repository is still importing.

Description

(#9508) Default ACL of auth any makes sense where we had auth no

In auth.conf, a setting of auth no means that only unauthenticated
requests are allowed. If you actually have a certificate you can't use the
service. (Yes, anonymous users have *more* access than authenticated ones.)

This alters the default to auth any instead, which allows you to access
these endpoints even where you already have a certificate.

This better supports the distributed model of certificate management anyhow,
now that we have things like the cloud provisioner trying to manage
certificates for other nodes over the network.

Signed-off-by: Daniel Pittman <daniel@puppetlabs.com>

Details

Provenance
Daniel Pittman <daniel@puppetlabs.com>Authored on
vanmeeuwenPushed on Jun 2 2015, 2:22 PM
Parents
rPUa45279a17209: Merge remote-tracking branch 'josh/ticket/2.7.x/10269-build-break' into 2.7.x
Branches
Unknown
Tags
Unknown

Event Timeline

Daniel Pittman <daniel@puppetlabs.com> committed rPU057cda625600: (#9508) Default ACL of `auth any` makes sense where we had `auth no` (authored by Daniel Pittman <daniel@puppetlabs.com>).Nov 1 2011, 10:10 PM

Changes (2)

PathSize
conf/
lib/
puppet/
network/

rPU057cda625600

View Options

conf/auth.conf

Loading...
View Options

lib/puppet/network/rest_authconfig.rb

Loading...