Page MenuHomeDevCentral
Differential D3402

Deploy Salt policy properly
ClosedPublic
Actions

Authored by dereckson on Aug 4 2024, 11:13.
Tags
None
Referenced Files
F23748486: D3402.id8767.diff
Fri, Feb 6, 10:23
F23700487: D3402.diff
Fri, Feb 6, 03:23
F23685429: D3402.id8768.diff
Fri, Feb 6, 01:41
F23638734: D3402.id8770.diff
Thu, Feb 5, 20:13
F23631999: D3402.id8767.diff
Thu, Feb 5, 19:28
F23631077: D3402.id8768.diff
Thu, Feb 5, 19:22
F23630583: D3402.id8769.diff
Thu, Feb 5, 19:19
Unknown Object (File)
Thu, Feb 5, 02:26
View All Files
Subscribers
None

Details

Reviewers
dereckson
Commits
rOPSfc444c66ae57: Deploy Salt policy properly
Summary

Salt is currently configured to login with an authentication method
tied to the "salt" policy, not to the "salt-primary" policy.

As such, there is a need to copy over that policy.

Also, when creating a token for another server, thr role used is
always "salt-node". Names like "salt-node-windriver" are policies,
not the role allowing such policies.

Test Plan

Tested on Complector

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
Lint Passed
Unit
No Test Coverage
Branch
deploy-properly-salt-policy
Build Status
Buildable 5412
Build 5693: arc lint + arc unit

Revision Contents
Changeset List

PathSize
pillar/
credentials/
16 lines
roles/
vault/
policies/
files/
6 lines
12 lines

Diff 8769

View Options

pillar/credentials/vault.sls

Loading...
View Options

roles/vault/policies/files/salt-primary.hcl

Loading...
View Options

roles/vault/policies/init.sls

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator