certificate_extensions_facts

Provides custom fact to include all puppet certificate extensions (trusted facts) as facts

Jesse Reynolds

jesse

13,747 downloads

12,770 latest version

5.0 quality score

Version information

  • 0.1.4 (latest)
  • 0.1.3
  • 0.1.2
  • 0.1.1
  • 0.1.0
released May 2nd 2016
This version is compatible with:
  • RedHat
    ,
    Ubuntu

Start using this module

Documentation

jesse/certificate_extensions_facts — version 0.1.4 May 2nd 2016

Puppet Certificate Extensions Facts

This puppet module provides a custom fact to include all puppet certificate extensions as facts. This allows console based clasification of nodes based on 'trusted' facts embedded in the certificate by making these available as regular facts.

Facts added correspond to each of the X509 certificate extensions under Puppet's ppRegCertExt oid namespace, 1.3.6.1.4.1.34380.1.1. When there are short names defined in the puppet agent code in Puppet::SSL::Oids::PUPPET_OIDS the facts will appear with the short names as the fact names. Eg:

$ facter pp_instance_id
i-8da75c11

They will also always appear as facts named with the oid prefixed with certificate_extension_, and with periods translated to underscores Eg:

$ facter certificate_extension_1_3_6_1_4_1_34380_1_1_2
i-8da75c11

See the docs for the list of oids with short names defined in the puppet agent.

Author: Jesse Reynolds; Puppet, Inc.

This fact is subject to the license of this module as per the LICENSE file.