Support Visibility in Automate via Chef Server #148

chris-rock · 2016-11-07T15:50:54Z

Cookbook version

2.0

Scenario:

Customers use the latest version of Automate that allows users to send reports to Visibility Data Collector API via Chef Server. This increases security, since all requests are signed now. The audit cookbook should support that scenario

Solution

As discussed with @alexpop, we are two different endpoints that are being used based on the setup. We have the following flows:

chef-client (with dc_token) —> chef-server(/data-collector/) —> chef-automate authenticates using dc_token from client
chef-client —> chef-server(/organizations/ORG/data-collector) —> chef-automate authenticates using dc_token added by chef-server after verifying the client

The first flow is already implemented. We need to add support for the second flow.

/data-collector/ requires dc_token
/organizations/([^/]+)/data-collector requires chef signed headers

The text was updated successfully, but these errors were encountered:

chris-rock · 2016-11-28T09:06:44Z

fixed via #163

chris-rock added the Type: Enhancement Adds new functionality. label Nov 7, 2016

arlimus added in progress and removed in progress labels Nov 28, 2016

chris-rock closed this as completed Nov 28, 2016

chris-rock removed the ready label Nov 28, 2016

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Support Visibility in Automate via Chef Server #148

Support Visibility in Automate via Chef Server #148

chris-rock commented Nov 7, 2016 •

edited

Loading

chris-rock commented Nov 28, 2016 •

edited

Loading

Support Visibility in Automate via Chef Server #148

Support Visibility in Automate via Chef Server #148

Comments

chris-rock commented Nov 7, 2016 • edited Loading

Cookbook version

Scenario:

Solution

chris-rock commented Nov 28, 2016 • edited Loading

chris-rock commented Nov 7, 2016 •

edited

Loading

chris-rock commented Nov 28, 2016 •

edited

Loading