Add section on certificates layout#965
Draft
ehelms wants to merge 1 commit intotheforeman:developfrom
Draft
Conversation
ekohl
reviewed
Aug 29, 2024
Member
ekohl
left a comment
ekohl
left a comment
There was a problem hiding this comment.
Yesterday I was thinking about writing a blog series "Katello from scratch" which doesn't use the installer but just regular packages and manual work. Could be interesting to discuss certificates at some point.
Is there anything missing?
Is there additional information that would be helpful in understanding?
I think there are 2 ways of looking at it: the various settings and where files end up being deployed.
I'd like a table with all the installer parameters that affect these and what their default values are.
Comment on lines
+118
to
+119
| * **default CA** - a CA generated by the installer, and used to generate server and client certificates. This CA is used by Candlepin to generate client certificates. | ||
| * **server CA** - a CA that can be provided by the user, or is a copy of the default CA, used by all public facing interfaces |
Member
There was a problem hiding this comment.
This is really Katello terminology that we don't use for Foreman. I'd be explicit in that.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
I couldn't find a spot where we laid this out in detail, so I wrote it up and am starting here to capture the information. Perhaps this best lives here, perhaps best in foreman-documentation.
There is some information, that is out of date in some spots, also collected in these locations:
Consolidating and making this better will be a useful activity that I will continue to look into. I do not want that cleanup to necessarily detract from this information which I hope can be helpful in understanding and being able to make changes in the future.
A few questions: