delta/ruby-gems/chef.git/lib/chef/knife/bootstrap.rb, branch https github.com: opscode/chef.git Replace highline gem with tty-prompt 2020-07-21T11:17:30+00:00 Vivek Singh vivek.singh@msystechnologies.com 2020-07-08T11:07:29+00:00 494ca6525b72a594df39f4c39861b4feb63d85fe Signed-off-by: Vivek Singh <vivek.singh@msystechnologies.com> 
Signed-off-by: Vivek Singh <vivek.singh@msystechnologies.com>
Implement ENFORCE_LICENSE dist constant for knife bootstrap 2020-06-29T01:50:56+00:00 Lance Albertson lance@osuosl.org 2020-06-13T23:33:26+00:00 75603f7b8243a4d3d4a76c1700717f1d945c6374 As a user of a community Chef distribution, I would like to be able to use knife bootstrap without requiring the license check [1]. It's expected that that user would not be installing a licensed version of Chef Infra Client, but instead a community distribution. This provides a similar feature as used in other places which makes it much easier to disable the license check. [1] https://gitlab.com/cinc-project/distribution/workstation/-/issues/3 Signed-off-by: Lance Albertson <lance@osuosl.org> 
As a user of a community Chef distribution, I would like to be able to use knife
bootstrap without requiring the license check [1]. It's expected that that user
would not be installing a licensed version of Chef Infra Client, but instead a
community distribution.

This provides a similar feature as used in other places which makes it much
easier to disable the license check.

[1] https://gitlab.com/cinc-project/distribution/workstation/-/issues/3

Signed-off-by: Lance Albertson <lance@osuosl.org>
spellcheck 2020-06-23T00:17:29+00:00 Lamont Granquist lamont@scriptkiddie.org 2020-06-23T00:17:29+00:00 4b76066272f3912332a7172673a4eaec231c5fdd Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org> 
Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
More aggressively deprecate config_value 2020-06-22T21:12:54+00:00 Lamont Granquist lamont@scriptkiddie.org 2020-06-22T21:12:54+00:00 4b4738568d9e7fcc3018936569c5013b0adabe3b Force subclasses to use the `config` hash directly. This should not affect any knife plugins shipping in chef-workstation since the calls to config_value have already been removed from all of those plugins. The multiple-argument version of config_value was not actually used anywhere in those plugins and the single value version was removed and replaced with accessing the config hash. Since that was introduced sometime in 15.x when the bootstrap changes went in, it is not expected that many external knife plugins have picked up the usage of config_value. Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org> 
Force subclasses to use the `config` hash directly.

This should not affect any knife plugins shipping in chef-workstation
since the calls to config_value have already been removed from all of
those plugins.  The multiple-argument version of config_value was not
actually used anywhere in those plugins and the single value version
was removed and replaced with accessing the config hash.  Since that
was introduced sometime in 15.x when the bootstrap changes went in,
it is not expected that many external knife plugins have picked up
the usage of config_value.

Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>
Merge pull request #9974 from chef/warn_on_validator_bootstrap 2020-06-10T02:00:50+00:00 Tim Smith tsmith@chef.io 2020-06-10T02:00:50+00:00 04b241463fca2dbbd4236b01da2915b19afbd6aa Warn during bootstrapping when using validation keys 
Warn during bootstrapping when using validation keys
 Warn during bootstrapping when using validation keys 2020-06-10T00:27:06+00:00 Tim Smith tsmith84@gmail.com 2020-06-10T00:07:26+00:00 52f68ab3ed7fb0175c0bda97409cb5323b0f74e1 We should highly encourage users to move to validatorless bootstrapping 1) It's more secure 2) It requires less admin work since there no validation key to pass around or rotate This also provides an improved message helping the user to move off the old keys and fixes some bad formatting where the 2nd line was indented about 40 columns. Signed-off-by: Tim Smith <tsmith@chef.io> 
We should highly encourage users to move to validatorless bootstrapping
 1) It's more secure
 2) It requires less admin work since there no validation key to pass
    around or rotate

This also provides an improved message helping the user to move off the
old keys and fixes some bad formatting where the 2nd line was indented
about 40 columns.

Signed-off-by: Tim Smith <tsmith@chef.io>
Let the user know what protocol we're using in knife bootstrap 2020-06-09T23:30:27+00:00 Tim Smith tsmith84@gmail.com 2020-06-09T23:30:27+00:00 d845f81e08191d902d29ed24afd2b0410e30cf64 This makes it really clear that you're not using the right protocol when you're bootstrapping a Windows node: ``` ❰tsmith❙~/dev/work/chef(git✱knife_password)❱✘≻ bundle exec knife bootstrap 172.16.1.233 -U ubuntu Connecting to 172.16.1.233 ``` becomes ``` ❰tsmith❙~/dev/work/chef(git✱knife_password)❱✘≻ bundle exec knife bootstrap 172.16.1.233 -U ubuntu Connecting to 172.16.1.233 using ssh ``` Signed-off-by: Tim Smith <tsmith@chef.io> 
This makes it really clear that you're not using the right protocol when you're bootstrapping a Windows node:

```
❰tsmith❙~/dev/work/chef(git✱knife_password)❱✘≻ bundle exec knife bootstrap 172.16.1.233 -U ubuntu
Connecting to 172.16.1.233
```

becomes

```
❰tsmith❙~/dev/work/chef(git✱knife_password)❱✘≻ bundle exec knife bootstrap 172.16.1.233 -U ubuntu
Connecting to 172.16.1.233 using ssh
```

Signed-off-by: Tim Smith <tsmith@chef.io>
Get lib/ free of spelling violations. 2020-05-19T03:29:40+00:00 Pete Higgins pete@peterhiggins.org 2020-05-07T23:50:25+00:00 a729c9be155e3d335fbd7bd165abd4ba9610943d Signed-off-by: Pete Higgins <pete@peterhiggins.org> 
Signed-off-by: Pete Higgins <pete@peterhiggins.org>
Align all our comments with the code 2020-05-06T23:54:20+00:00 Tim Smith tsmith84@gmail.com 2020-05-06T23:54:20+00:00 bed3ecfb36c61ec78b93155ad4ae3f3a01a2f57f Autocorrected with chefstyle after enabling that cop. It was very hard to read some complex autocorrected blocks w/o this. Signed-off-by: Tim Smith <tsmith@chef.io> 
Autocorrected with chefstyle after enabling that cop. It was very hard to read some complex autocorrected blocks w/o this.

Signed-off-by: Tim Smith <tsmith@chef.io>
Knife bootstrap options cleanup 2020-04-17T17:20:31+00:00 Lamont Granquist lamont@scriptkiddie.org 2020-04-09T20:28:17+00:00 d7452360adb80e383b4886246990dbe46d3387c2 We have issue that are caused by old code before merging of hash values were done correctly. The `config` hash correctly merges all options and should always be used. Knife plugins should never touch Chef::Config[:knife] values (either reading or writing from them). The `knife_config` should be converted to the `config` hash since it directly accesses Chef::Config[:knife] values. The `config_value()` helper should no longer be used. Very clearly most people started to use that when they should just use the config hash directly. That was intended to be used only when a knife cli option was being renamed and the former configuration value needed to be used as well. It has been cargo culted around as the way to access config values, and that should really stop. The DataBagSecretOption mixin has been cleaned up so that the cli options read+write only to the config[:cl_secret] and config[:cl_secret_file] values. The config file values go into config[:secret] and config[:secret_file]. The fact that those are the merged values in the `config` hash doesn't matter since only the cli should be writing to the first two and only the config file should be writing to the latter two. I don't know why it was made so complicated to begin with, but if there's some hidden chef-11.early backcompat there, then chef-16 deliberately breaks that. The use of `locate_config_value` helpers in all knife plugins is also discouraged (but they all implement those themselves), just use the config hash, which has the correct hash merge ordering. All of those need to be deleted. Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org> 
We have issue that are caused by old code before merging of hash values
were done correctly.

The `config` hash correctly merges all options and should always be
used.

Knife plugins should never touch Chef::Config[:knife] values (either
reading or writing from them).

The `knife_config` should be converted to the `config` hash since it
directly accesses Chef::Config[:knife] values.

The `config_value()` helper should no longer be used.  Very clearly most
people started to use that when they should just use the config hash
directly.  That was intended to be used only when a knife cli option
was being renamed and the former configuration value needed to be
used as well.  It has been cargo culted around as the way to access
config values, and that should really stop.

The DataBagSecretOption mixin has been cleaned up so that the cli
options read+write only to the config[:cl_secret] and
config[:cl_secret_file] values.  The config file values go into
config[:secret] and config[:secret_file].  The fact that those are
the merged values in the `config` hash doesn't matter since only
the cli should be writing to the first two and only the config
file should be writing to the latter two.  I don't know why it was
made so complicated to begin with, but if there's some hidden
chef-11.early backcompat there, then chef-16 deliberately breaks that.

The use of `locate_config_value` helpers in all knife plugins is also
discouraged (but they all implement those themselves), just use the
config hash, which has the correct hash merge ordering.  All of those
need to be deleted.

Signed-off-by: Lamont Granquist <lamont@scriptkiddie.org>