A Clojure library designed to hold lightweight API clients for PE services.
The clients are meant to provide alternate versions of the TK services. You should be able to merely include them in the bootstrap.
The clients use ssl authorization via the global.certs keys.
global.certs.ssl-key: the key for this clients identity.
global.certs.ssl-cert: the cert for this clients identity.
global.certs.ssl-ca-cert: the ca-cert for this clients cert and the upstream service.
The location of the RBAC and Activity services are configured with the
activity-consumer.api.url settings respectivetly.
The Activity service protocol should be considered temporary and unstable. It may not directly match the Activity Reporting service protocol, which may itself be unstable.
The tests require pki files in the
dev-resources/ssl/ directory of:
ca.pem: a CA cert with the CN of "puppet"
key.pem: a node private key
cert.pem: a cert signed by
ca.pemfor the private key at
key.pemwith a CN of "localhost"
alternate-ca.pem: a valid but untrusted CA cert
The repo contains these files needed for testing, though if needed you may
want to read
dev-resources/gen-pki.sh for the commands to generate additional
sets of files.
Copyright © 2016 Puppet
Distributed under the Apache License version 2.0