Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix for CentOS 7 and 8 #79

Open
wants to merge 18 commits into
base: master
Choose a base branch
from
Open

Fix for CentOS 7 and 8 #79

wants to merge 18 commits into from

Conversation

litnialex
Copy link

@litnialex litnialex commented Feb 19, 2021
edited
Loading

PR progress checklist (to be filled in by reviewers)

  • Changes to documentation are appropriate (or tick if not required)
  • Changes to tests are appropriate (or tick if not required)
  • Reviews completed

What type of PR is this?

Primary type

  • [build] Changes related to the build system
  • [chore] Changes to the build process or auxiliary tools and libraries such as documentation generation
  • [ci] Changes to the continuous integration configuration
  • [feat] A new feature
  • [fix] A bug fix
  • [perf] A code change that improves performance
  • [refactor] A code change that neither fixes a bug nor adds a feature
  • [revert] A change used to revert a previous commit
  • [style] Changes that do not affect the meaning of the code (white-space, formatting, missing semi-colons, etc.)

Secondary type

  • [docs] Documentation changes
  • [test] Adding missing or correcting existing tests

Does this PR introduce a BREAKING CHANGE?

No.

Related issues and/or pull requests

Describe the changes you're proposing

merging pillar key 'letsencrypt' with grains key 'letsencrypt' removes the necessity to define individual domainsets per minion in pillar.
With these changes one cand use such sls:

include:
  - ..letsencrypt

letsencrypt-set-domain:
  grains.present:
    - name: letsencrypt:domainsets:www
    - value:
        - '{{ salt['config.get']('fqdn') }}'
    - force: yes
    - require_in:
        - letsencrypt-config

And every minion with get it's own cert, provided it's grains.fqdn is resovlable. If not, one can run
salt-call grains.append letsencrypt:domainsets:www www.example.com
and then run letsencrypt formula.

Submitted changed do no harm, even if grans lack letsencrypt key.

Change in letsencrypt/domains.sls improve behaviour when domainsets is not defined.

Pillar / config required to test the proposed changes

Debug log showing how the proposed changes work

...
----------               
          ID: /usr/bin/certbot renew      
    Function: file.absent
      Result: True        
     Comment: File /usr/bin/certbot renew is not present
     Started: 14:29:53.125323            
    Duration: 1.638 ms
     Changes:                                                                          
----------                   
          ID: letsencrypt-no-domainsets
    Function: test.fail_without_changes
      Result: False             
     Comment: No domainsets defined for letsencrypt
     Started: 14:29:53.833044          
    Duration: 1.109 ms                                                                 
     Changes:                                                                          
                                           
Summary for 90520732028390                                                             
------------                               
Succeeded: 8                    
Failed:    1
------------
Total states run:     9

Documentation checklist

  • Updated the README (e.g. Available states).
  • Updated pillar.example.

Testing checklist

  • Included in Kitchen (i.e. under state_top).
  • Covered by new/existing tests (e.g. InSpec, Serverspec, etc.).
  • Updated the relevant test pillar.

Additional context

@litnialex
fix(centos) for CentOS 7 and CentOS 8
30303e1 
Install epel-release package prior to certbot package.
Differentiate certbot package name in CentOS 7 and CentOS 8.
@litnialex
fix(centos): for CentOS 7 and CentOS 8
a07c3d1 
Install epel-release package prior to certbot package.
Differentiate certbot package name in CentOS 7 and CentOS 8.
@litnialex
Merge branch 'master' of github.com:litnialex/letsencrypt-formula
6cbfea5
@litnialex litnialex changed the title Allow defining domainsets in grains Fix for CentOS 7 and 8 Feb 21, 2021
@litnialex litnialex mentioned this pull request Feb 21, 2021
Open
litnialex and others added 14 commits February 23, 2021 14:52
@litnialex
feat(map): use config.get with merge=recurse
111c49f
@litnialex
feat(core): create webroot-path
bc82625
@litnialex
Merge branch 'master' of github.com:saltstack-formulas/letsencrypt-fo…
c5436b9 
…rmula into salt
refactor(install): change use_package to install_method
852f110 
Change the use_package boolean to install_method string. This will allow
different installation methods besides system packages and git in the
future.
feat(*): install certbot with pip
756a272 
Offer alternative method of installing certbot with pip. Currently
untested on most supported platforms.
feat(pip): allow plugin installation
ea3b3e0 
Can now give a list of plugins to install when using the pip
installation method.
refactor(install): adapt virtualenv package to OS
5b92061
chore(gitlab+travis): test pip installation method
23d552d
docs(readme): document pip installation method
288140f
chore(gitlab): fix typo
d7402e7
@litnialex
Merge branch 'salt'
ac76928
remove excessive changes changes
589319a
Merge branch 'pip' (PR saltstack-formulas#85)
85505c2
fix after PR for pip install
1cd2efc
@litnialex litnialex requested a review from a team as a code owner December 4, 2021 09:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@javierbertoli javierbertoli Awaiting requested review from javierbertoli javierbertoli is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@litnialex