puppetlabs-java_ks icon indicating copy to clipboard operation
puppetlabs-java_ks copied to clipboard

Published 20 hours ago verified publisher icon puppetlabs

truststore is not idempotent for chain pem certificates

Open SvenVD-be opened this issue 9 months ago • 0 comments

Describe the Bug

Consider

java_ks { "$cert_alias:$truststore_path": ensure => latest, certificate => $cert_path_unique, trustcacerts => true, password => $truststore_passwd }

If $cert_path_unique is a pem file which contains an intermediate and a leaf certificate then puppet outputs the following every run Java_ks[jREDACTED]/ensure: ensure changed 'present' to 'latest'

Expected Behavior

Puppet should be idempotent

Environment

  • Version [e.g. 5.0.0]
  • Platform [e.g. puppet 8 rhel 8]

SvenVD-be avatar May 23 '24 16:05 SvenVD-be