cookbook 'client-rekey', '~> 0.3.0'
The client-rekey cookbook has been deprecated
Author provided reason for deprecation:
The client-rekey cookbook has been deprecated and is no longer being maintained by its authors. Use of the client-rekey cookbook is no longer recommended.
client-rekey (3) Versions 0.3.0 Follow5
Regenerates your client key
cookbook 'client-rekey', '~> 0.3.0', :supermarket
knife supermarket install client-rekey
knife supermarket download client-rekey
client-rekey Cookbook
Regenerates a chef-client's API key. You want to use this if you believe
your client keys could be exposed as a result of the heartbleed
vulnerability.
By default, this cookbook will cause chef-client to rekey itself every
24 hours. This can be adjusted with the attribute
node['client-rekey']['interval']
, which is the maximum allowed age of
the client key in seconds.
The library in this cookbook will honor the client configuration setting
local_key_generation
. If set to true in the client.rb
configuration
file, the private key will be generated locally and only the public key
will travel over the wire. This requires a Chef 11 server.
Warning
If you use chef-vault or any other code that uses your client's keys,
you'll need to re-encrypt your data each time you rekey.
Supported Platforms
This is expected to work on all platforms that chef-client supports.
Attributes
node['client-rekey']['interval']
: This recipe uses the mtime of your
client.pem to determine when it was last updated. If the difference
between now and the file's mtime is greater than this interval setting,
your client key will be regenerated.
Usage
client-rekey::default
Include client-rekey
in your node's run_list
:
{ "run_list": [ "recipe[client-rekey::default]" ] }
Contributing
- Fork the repository on Github
- Create a named feature branch (i.e.
add-new-recipe
) - Write you change
- Write tests for your change (if applicable)
- Run the tests, ensuring they all pass
- Submit a Pull Request
License & Authors
Copyright:: 2009-2015, Chef Software, Inc Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Dependent cookbooks
This cookbook has no specified dependencies.
Contingent cookbooks
client-rekey Cookbook CHANGELOG
This file is used to list changes made in each version of the client-rekey cookbook.
0.3.0 (2017-04-20)
- Resolve Cookstyle warnings
- Changed to Chef::ServerAPI from Chef::REST as Chef::REST is deprecated when on Chef > 12.7
- Switch testing to delivery local from Rake
- Use a standardized license string in the metadata
- Add chef_version metadata
- Add supports metadata
0.2.0
- Make API call Chef 10 compat
- Added travis and cookbook version badges to the readme
- Updated chefignore and .gitignore files
- Updated platforms in the Test Kitchen config
- Added standard Rubocop file
- Added Travis CI testing
- Removed yum from Berksfile and removed version constraint on Apt
- Added contributing and testing docs
- Updated Gemfile with testing deps
- Added maintainers.md and maintainers.toml
- Added rakefile for simplified testing
- Added source_url and issues_url metadata
- Added basic Chefspec convergence test
- Updated Berksfile with testing deps
- Updated Opscode -> Chef Software
- Resolved multiple rubocop warnings
0.1.0
Initial release of client-rekey
-
Enhancements
- an enhancement
-
Bug Fixes
- a bug fix
Collaborator Number Metric
0.3.0 failed this metric
Failure: Cookbook has 1 collaborators. A cookbook must have at least 2 collaborators to pass this metric.
Contributing File Metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file
Cookstyle Metric
0.3.0 failed this metric
Chef/Deprecations/UsesChefRESTHelpers: Don't use the helpers in Chef::REST which were removed in Chef Infra Client 13 (https://docs.chef.io/workstation/cookstyle/chef_deprecations_useschefresthelpers): client-rekey/libraries/rekey.rb: 108
Run with Cookstyle Version 7.32.1 with cops Chef/Deprecations,Chef/Correctness,Chef/Sharing,Chef/RedundantCode,Chef/Modernize,Chef/Security,InSpec/Deprecations
No Binaries Metric
0.3.0 passed this metric
Testing File Metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
Version Tag Metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
0.3.0 failed this metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file
Cookstyle Metric
0.3.0 failed this metric
Chef/Deprecations/UsesChefRESTHelpers: Don't use the helpers in Chef::REST which were removed in Chef Infra Client 13 (https://docs.chef.io/workstation/cookstyle/chef_deprecations_useschefresthelpers): client-rekey/libraries/rekey.rb: 108
Run with Cookstyle Version 7.32.1 with cops Chef/Deprecations,Chef/Correctness,Chef/Sharing,Chef/RedundantCode,Chef/Modernize,Chef/Security,InSpec/Deprecations
No Binaries Metric
0.3.0 passed this metric
Testing File Metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
Version Tag Metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
0.3.0 failed this metric
Run with Cookstyle Version 7.32.1 with cops Chef/Deprecations,Chef/Correctness,Chef/Sharing,Chef/RedundantCode,Chef/Modernize,Chef/Security,InSpec/Deprecations
0.3.0 passed this metric
Testing File Metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file
Version Tag Metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number
0.3.0 failed this metric
0.3.0 failed this metric
Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number