A release that converts the module to the PDK version 1.3.2, alongside an additional parameter added.
- Add support for
destkeypasswhen importing PKCS12 keystores.
- Module has been converted to the PDK with version 1.3.2.
Supported Release 2.1.0
The main purpose of this module is to release Rubocop changes, with some other minor updates included.
- Support added for the specifying of source cert alias.
- The module has been changed to comply with the set rubocop guidelines.
- JDK updated to 8u161.
- Fingerprint extraction in keytool.rb has been improved upon.
- Modulesync changes.
Supported Release 2.0.0
This is a roll up of maintainence changes, features and compatibility updates from throughout the year. This release is backwards incompatible because the Puppet version requirements have now changed with the lower Puppet version boundary jumping from 3.0.0 to 4.7.0 and we have removed vulnerable puppet3 support dependencies.
- Debian 9 entry in 'metadata.json'
- Support for importing pkcs12 files by introducing a function called
import pkcs12 - Support for removal of key store file on invalid password by introducing
password_fail_reset
- Appveyor testing has been enabled
- General maintainence changes via modulessync
- Java-ks is now being managed in modulesync as a cross-platform module
- FM-6547 - Pin JDK installation package to 8.0.152 for Windows
- pkcs12 acceptance tests no longer run on SLES
- CONTRIBUTING.md updates
- Travis ruby version to 2.4.0 and 2.1.9
- Upper Puppet boundary to Puppet 6.0.0
- Lower Puppet boundary to Puppet 4.7.0
- Unit test failures on Windows
- Java 9 support
- SLES 10 SP4 entry in 'metadata.json'
- Debian 6 entry in 'metadata.json'
- Windows Server 2003 R2 and Windows 8 entry in 'metadata.json'
- Ubuntu 10.04 and 12.04 entry in 'metadata.json'
- FM-6588 - Remove vulnerable puppet3 support dependencies
The keytool would hang on occasion for unexplained reasons, so keytool executions are wrapped in a timeout that defaults to 120 seconds and is configurable by the keytool_timeout parameter.
- New parameter:
keytool_timeout
This release contains some small features and one bugfix which makes the module environment safe.
- Added a new parameter,
private_key_typewhich defaults torsabut can also be set toecfor ECDSA keys. - Added
java_ks::configclass withcreate_resourcesso that Hiera can be used to manage the config. - [MODULES-2495] Allows the provider to work with encrypted private keys.
- [MODULES-4505] Fixed
self.title_patternsin java_ks type so it doesn't return a Proc so the module is environment safe.
This release contains bugfixes around certificate chains and other testing improvements.
- Dont expose keystore content when keystore initally empty.
- Support certificate chains in certificate file.
- Support multiple intermediate certificates in chain.
- Improve cert chain acceptance tests.
- Update to current msync configs.
- Debian 8 support.
This release contains a new option to provide destkeypass. Also contains bugfixes and a metadata update to support Puppet Enterprise 2015.3.x.
- Adds
destkeypassoption to pass in password when importing into the keystore. - Adds feature support for JCEKS format and extensions.
- Fixes composite title patterns in provider to improve support for Windows.
- Improves Windows testing.
This release updates the metadata for the upcoming release of PE as well as an additional bugfix.
- Fixes Puppet.newtype deprecation warning
Remove openssl command line tool from requirements
- Add Windows support and tests
This release has test fixes and files synced from modulesync.
This release has bugfixes and test improvements.
- Update tests to use RSpec 2.99 syntax
- Remove broken support for puppet:// files.
- Remove incorrect statment of windows support from metadata.json.
- Fix path issue for openssl on solaris 11.
- No known bugs
This is a compatibility release. No functional changes to this module were made in this release, just testing infrastructure changes to extend tests to RHEL7 and Ubuntu 14.04
- No known bugs
This is a supported release. This release removes a testing symlink that can cause trouble on systems where /var is on a seperate filesystem from the modulepath.
- No known bugs
This is a supported release. Only tests and documentation were changed.
- Test changes.
- Documentation changes.
- No known bugs
- Updating specs
This release adds puppet:// URI support, a few bugfixes, and lots of tests.
puppet://URI support for thechain,certificate, andprivate_keyparameters
- Validate that keystore passwords are > 6 characters (would silent fail before)
- Fixed corrupted keystore PKCS12 files in some cases.
- More acceptance tests, unit tests, and rspec-puppet tests.
This minor feature provides a number of new features:
- We have introduced a new property
password_fileto the java_ks type, so that users can specify a plain text file to be used for unlocking a Java keystore file. - A new property
pathhas been also added so you can add a custom search path for the command line tooling (keystore etc.)
Travis-CI support has also been added to improve testing.
- Support for executables outside the system default path (Filip Hrbek)
- Add password_file to type (Raphaël Pinson)
- Travis ci support (Adrien Thebo)
- refactor keytool provider specs (Adrien Thebo)
Fixes an issue with ibm java handling input from stdin on SLES