This cookbook provides a trusted_certificate
resource to manage adding SSL/TLS certificates to the operating system's trust store.
- Debian/Ubuntu
- RHEL 6+
- Chef 12.7+
- none
Installs the ca-certificates
package that provides the certificate trust mechanism.
Adds a certificate to the operating system's trust store.
content
: The contents of the cert to add. This can be specfied as inline content, a URL to a remote file, or a cookbook_file included in a wrapper cookbook.certificate_name
: The filename of the cert
create
delete
Create certificate from inline content:
trusted_certificate 'my_corp' do
action :create
content 'THIS_WOULD_BE_THE_WHOLE_CERT_CONTENTS'
end
Download from a remote location:
trusted_certificate 'my_corp_remote' do
action :create
content 'http://www.example.com/my_corp_remote.crt'
end
Create cert from file included in a wrapper cookbook:
trusted_certificate 'my_corp_cert_wrapper' do
action :create
content 'cookbook_file://my_trusted_certs::my_corp_cert.crt'
end
Delete a certificate from the chain:
trusted_certificate 'my_corp' do
action :delete
end
Author: Cookbook Engineering Team (cookbooks@chef.io)
Copyright: 2008-2016, Chef Software, Inc.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.