WIP: Hackweek - Configure proxy formula

[mbussolotto]

This formula provides a new procedure for setting a uyuni proxy. With this new formula, the steps would be:

• generate ca certificate, server certificate and server.key on Uyuni using Systems -> Proxy Configuration
• run configure-proxy formula

ca certificate, server certificate and server.key can be saved on the local uyuni proxy or they can be remote

Test can be found here: https://build.opensuse.org/package/show/home:mbussolotto/configure-proxy-formula

[mbussolotto]

In my really simple scenario is working fine, but I don't know if it can be fine in more complicated environment. Any opinions is welcome

[aaannz]

Aren't you missing file or state generating config-answers.txt?

[aaannz]

I know that this is path we have always used, but that was because of user interaction. With salt states we can actually use something more in-line with FHS (even though FHS is these days not relevant).

How about storing it in /run? Once we call configure-proxy, it calls mgr-ssl-cert-setup which will store certificates to the proper places and these downloaded files are no longer needed. So they can be removed later. /run is tmpfs these days.

[aaannz]

If this is just for us, then LGTM.

If we want to create package and ship it, then we need form for server username and password. Or some other way how to get this info.

[aaannz]

This is really valid only for sumaform. I do not think salt clients usually have server_username and server_password in their grains. Is this intentional? If so, readme should mention steps how to use this formula.

But IMO this should be part of form and passed as pillar.

[aaannz]

Nitpick: maybe we can have special group for this. Unfortunately formula group names are not product translated, so ${productName} will not work, but something like SUSE Manager ecosystem or Uyuni one.

[mbussolotto]

Thanks @aaannz , I'll try to address all these things on next learning tuesday ;)