Class: Puppet::CatalogDiff::Tlsfactory

Inherits:

Object

Object
Puppet::CatalogDiff::Tlsfactory

show all

Defined in:: lib/puppet/catalog-diff/tlsfactory.rb

Overview

create a proper TLS context for the Puppet HTTP client

Class Method Summary collapse

.ssl_context(tls_cert, tls_key, tls_ca) ⇒ Object

Class Method Details

.ssl_context(tls_cert, tls_key, tls_ca) ⇒ `Object`

# File 'lib/puppet/catalog-diff/tlsfactory.rb', line 7

def self.ssl_context(tls_cert, tls_key, tls_ca)
  # Load certificates to make a connection to a possible foreign / not-by-default-trusted HTTPS resource
  x509 = Puppet::X509::CertProvider.new
  cacerts = x509.load_cacerts_from_pem(File.read(tls_ca, encoding: Encoding::UTF_8))
  client_cert = x509.load_client_cert_from_pem(File.read(tls_cert, encoding: Encoding::UTF_8))
  private_key = x509.load_private_key_from_pem(File.read(tls_key, encoding: Encoding::UTF_8))
  prov = Puppet::SSL::SSLProvider.new
  prov.create_context(revocation: false, cacerts: cacerts, private_key: private_key, client_cert: client_cert, include_system_store: true, crls: [])
end

Class: Puppet::CatalogDiff::Tlsfactory

Overview

Class Method Summary collapse

Class Method Details

.ssl_context(tls_cert, tls_key, tls_ca) ⇒ Object

.ssl_context(tls_cert, tls_key, tls_ca) ⇒ `Object`