Skip to content

1.8.0

Latest
Latest
Compare
Choose a tag to compare
@basvandervlies basvandervlies released this 19 Aug 14:38
· 1 commit to master since this release
1.8.0
fee14e9
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

SCL enhancements:

  • removed support for cfengine 3.12 and lower
  • rewrote logic for scl json reading and merging. It is easier to debug and read
  • scl_show_data:
  • scl_service_install_tarballs:
    • Added check for software_dir and create it if not exists
  • These variables can be used in the mustache template to show which files are used for rendering
    • scl.template_file --> The mustache template used for rendering
    • scl.json_files --> The json files used for rendering
  • After parsing all service json files bundle(s) with tag scl_override_json_service_hook will run to allow overriding variables with classes set by the service json files
  • new bundle scl_json_merge_data:
    • Here you can override service variables with the aid of json data, eg:
bundle agent service_override_json_data
{
    meta:
        "tags" slist => { "scl_override_json_service_hook" };

    vars:
        QUOBYTE_CLIENT::
            "fuse_data" data => parsejson('{ "allow" : "user_allow_other" }'),
                comment => "Needed for quobyte mounts";

    methods:
        QUOBYTE_CLIENT::
            "" usebundle => scl_json_merge_data("fuse", "@(fuse_data)");
}

These services have bug fixes or new features:

  • ssh:
    • added Ciphers and MACs entries to improve security
  • cron:
    • the created files should be world reabable to enable cron for an user.
  • jupyterhub:
    • make rewriterule flags configurable apache_rewriterule_flags
    • software directory can be different then configuration directory sw_dir
    • hub configurtion files can also access OIDC variables oauth_client_id and oauth_client_secret
  • tripwire:
    • set TRIPWIRE<file> class if hash has been changed so we can use it other service files
  • pam_radius:
    • debian fix for >=3.0.0 detect if /lib is a directory instead of symlink to /usr/lib
  • postfix:
    • Enabled restart when postmap is used for generating hash files
  • rootfiles:
    • Must use stepping_stone_authorized_keys instead stepping_stone
  • slurm
    • Use standard /sbin path for service files
Assets 2
Loading