Daniel Dreier
Daniel Dreier
Thanks @vinayhegde1990 - I am recategorizing this as a feature request rather than a bug, because this is not currently something we support or have documented as supporting.
What are the permissions on `/var/lib/autosign/autosign.journal`? Is it writable by the user puppet or puppet enterprise is running as?
@sirhopcount that definitely looks correct. Tokens only get recorded in the journal after a successful validation, to prevent them from being re-used. Tokens aren't recorded upon generation; they're cryptographically signed...
Can you also post your `autosign.conf` and the /etc/puppet/csr_attributes.yaml file on the node you're trying to set up?
thanks for doing all this work to figure out what does and doesn't work. That does seem like a better idea for how to handle it. Is the semi-broken regex...
thanks - this looks like a valid issue
@Penumbra69 and all the folks on here: I hear you, and the use cases you're describing totally make sense to me. I'm recategorizing this as an enhancement request because although...
@marshallford the behavior you're describing is how we expect local-exec to behave with sensitive output, for now. I'm going to re-label this as an enhancement request, because the idea of...
Thanks for reporting this! You're right that it shouldn't be so slow. I'm running on a mac and it's not that slow for me. Can you try and do an...
@AlmogCohen the reason I wanted to look into DNS issues is that golang uses its own DNS resolver rather than the native one, and this has caused issues in Terraform...