9.0.0 (2018-10-18)
Breaking changes:
Implemented enhancements:
- Added JOURNAL option for log_file #458 (lzap)
- Add {dns,network}_view parameters to infoblox #455 (ekohl)
- Fixes #24505 - Add proxy name + url into scap settings #443 (xprazak2)
- Fixes #24012 - Add PuppetCA providers settings #433 (juliantodt)
Fixed bugs:
- Fixes #25036 - ensure proxy registration happens before puppet #456 (evgeni)
- Move the REX SSH directory to /var/lib/foreman-proxy #451 (ekohl)
- fixes #24690 - add symlink grub2/boot to ../boot #449 (stbenjam)
Closed issues:
- Custom infoblox views #431
Merged pull requests:
- Mark compatible with theforeman/puppet 10.x #462 (ekohl)
- allow extlib 3.x #459 (mmoll)
- Contain classes #457 (ekohl)
- allow puppetlabs-stdlib 5.x #450 (mmoll)
8.0.2 (2018-09-02)
Closed issues:
- forge-8.0.1 contains modules directory #454
8.0.1 (2018-08-29)
8.0.0 (2018-07-16)
Breaking changes:
- Refs #24012 - Add PuppetCA providers settings #435 (juliantodt)
Implemented enhancements:
7.2.3 (2018-07-11)
Fixed bugs:
7.2.2 (2018-06-18)
Fixed bugs:
7.2.1 (2018-05-30)
Merged pull requests:
7.2.0 (2018-05-29)
Implemented enhancements:
- Updated grub.cfg with explanation #426 (lzap)
- Configure ansible reporting callback #424 (ekohl)
- Add acceptance tests #423 (ekohl)
- Add dhcp options to allow overrides #422 (lukealex)
- Listen on IPv6 on EL7 #421 (ekohl)
- Fixes #22862 - add async_ssh param #418 (chris1984)
- Fixes #22845 - Install python-requests with Ansible #417 (dLobatog)
- Fixes #22842 - Create .ansible.cfg in /etc/foreman-proxy #415 (dLobatog)
- attempt a more accurate DNS/DHCP default interface #412 (sean797)
Fixed bugs:
Merged pull requests:
- Pin facterdb to 0.5.0 #420 (ekohl)
- Rewrite PowerDNS support as an example #419 (ekohl)
- Fix the documentation for the infoblox DHCP plugin #414 (ekohl)
7.1.0 (2018-02-28)
Implemented enhancements:
- Fixes #22479 - Handle remote directory with undefined parent #410 (ekohl)
- Refs #22513 - Expose the dynflow file limit #409 (chris1984)
7.0.0 (2018-01-29)
Breaking changes:
- Remove the configure_openscap_repo parameter #403 (ekohl)
- Use puppet4 functions-api #402 (juliantodt)
- Use modern defaults and document compatibility #401 (ekohl)
Implemented enhancements:
- Allow foreman 9.x and tftp 4.x #406 (ekohl)
- Support tls_disabled_versions for dynflow core #404 (stbenjam)
- Add support for additional DHCP listen interfaces #399 (antaflos)
- refs #21350 - installer support for disable_tls_versions #397 (stbenjam)
- refs #4917 - add realm ad plugin support #396 (timogoebel)
- Use ensure_resource for sudoers.d #391 (ekohl)
- remove EOL OSes, add new ones #387 (mmoll)
Fixed bugs:
- Refs #20542 - correct link to cipher suite names #394 (tbrisker)
- Fixes #21943 - Renamed netboot packages for F27 #393 (ShimShtein)
- Fixes #21419 - Fix DHCP directory ACL #386 (ekohl)
- Use the correct variables when checking #385 (ekohl)
- New or changed parameters:
- Add
$tftp_replace_grub2_cfgparameter to disable replace of grub2.cfg
- Add
- Other changes and fixes:
- Bump allowed version of puppet-extlib to 3.0.0
- Stop enabling the openscap repo
- Introduce a
foreman_proxy::tftp::netbootclass - Work around broken grub 2 on EL 7.4 (#21006)
- Set ACLs on DHCP directories (#20683)
- Fix TFTP grub_packages for RHEL 7.4+
- Add support for REX kerberos auth
- use in-memory sqlite in smart proxy dynflow
- Drop Puppet 3 support
- New or changed parameters:
- Add
$autosignfilefor 1.16+ puppetca proxies and$use_autosignfileto be able to still use this module with older proxy versions. - Add
$dhcp_node_typeand$dhcp_peer_addressfor configuring DHCP failover. The behaviour can be configured further with advanced parameters, documented in the class docblock.
- Add
- New or changed parameters on smart proxy plugin classes:
- Add
$ssl_disabled_ciphersto the foreman_proxy::plugin::dynflow class. - Add
$collect_statusto the foreman_proxy::plugin::monitoring class.
- Add
- Other changes and fixes:
- Set foreman_smartproxy features for built-in and plugin modules. This verifies the proxy has correctly registered with all the desired features.
- Compatibility warnings:
- On Smart Proxy 1.16+ with puppetca support,
$use_autosignfileneeds to be set totrueand$autosignfileto the full path of theautosign.conffile.
- On Smart Proxy 1.16+ with puppetca support,
- New or changed parameters:
- Add
$puppet_api_timeoutparameter to set the timeout in seconds when accessing the Puppet environment classes API - Add
$realm_split_config_filesto control if realm configuration files are split. - Add
$freeipa_configfor the path to the FreeIPAdefault.confconfiguration file - Add
$use_sudoersto add contents to/etc/sudoers. This is ignored if$use_sudoersdis true. - Allow
$bind_hoststo also accept an array of interfaces
- Add
- New or changed parameters on smart proxy plugin classes:
- Add the foreman_proxy::plugin::dhcp::remote_isc class for the Remote ISC DHCP plugin.
- The PowerDNS plugin now also accepts
restas backend and got the$rest_urland$rest_api_keyparameters added. - Add
$install_keyto the foreman_proxy::plugin::remote_execution class. When set totrue, the generated SSH key is added to root'sauthorized_keys, which allows managing the proxy host through Remote Execution.
- Other changes and fixes:
- foreman_proxy::plugin::ansible does now make sure that ansible is configured to use the foreman callback plugin.
- Fix PXEGrub2 with vanilia GRUB2
- Add dir for corrupted openscap reports
- Better default value for
$dns_reverse - Fix notification of the dynflow service on Debian
- Compatibility warnings:
- On Smart Proxy 1.15 with realm support,
$realm_split_config_filesneeds to be set totrue.
- On Smart Proxy 1.15 with realm support,
- New or changed parameters:
- Add groups parameter for additional foreman-proxy user groups
- Add dhcp_pxeserver parameter to override DHCP next-server value (#16942)
- Permit dns_reverse to be an array of zone names
- New or changed parameters on smart proxy plugin classes:
- Add foreman_proxy::plugin::ansible class for the Ansible plugin
- Add foreman_proxy::plugin::dhcp::infoblox class for Infoblox DHCP plugin
- Add foreman_proxy::plugin::dns::infoblox class for Infoblox DNS plugin
- Add foreman_proxy::plugin::monitoring class for monitoring plugin
- Add foreman_proxy::plugin::omaha class for the Omaha plugin
- Other changes and fixes:
- Add Arch Linux support
- Change sudo puppetrun_cmd rule to be optional when no provider is set
- Don't create TFTP directories and files when tftp_managed is false
- Change grubx64.efi to signed copy from /boot instead of building (#16705)
- Change parameter documentation to use Puppet 4 style typing
- Change foreman_proxy::plugin::pulp's puppet_content_dir parameter default to use the $puppet_environmentpath fact
- Fix dhcp_range default to be undef
- Refactor puppetssh_command default values
- Support modules dns 4.x, dhcp 3.x, foreman 7.x, puppet 7.x, tftp 2.x
- Compatibility warnings:
- Drop support for Ruby 1.8.7
- Fix source EFI boot loader path for CentOS 6 (#289)
- Add symlink for dynflow_core settings directory to proxy (#16050)
- Remove management of remote_execution_ssh_core plugin, causing errors on some OSes (#287)
- New or changed parameters:
- Add manage_puppet_group parameter to ensure the puppet group exists when no Puppet Server package is installed
- New or changed parameters on smart proxy plugin classes:
- Add DB backend and PostgreSQL parameters to PowerDNS plugin class
- Add puppet_content_dir parameter to Pulp plugin class
- Add core parameters to Dynflow plugin class
- Other changes and fixes:
- Support package architecture change in Remote Execution plugin classes
- Make tftp/puppet modules optional by removing from foreman_proxy::params
- Deploy UEFI GRUB/GRUB2 boot files to TFTP server roots
- Change logs module to enabled by default
- Move some plugin parameter docs to advanced sections
- Compatible with theforeman/foreman 6.x
- Compatible with theforeman/puppet 6.x
- List compatibility with Fedora 24
- Compatibility warnings:
- Remove libvirt_backend parameter (1.11 support)
- Remove puppet_split_config_files_parameter (1.11 support)
- Remove Debian 7 (Wheezy) and Ubuntu 12.04 (Precise) support
- Change puppetssh provider name to 'ssh' on 1.12+, and deprecate passing 'puppetssh' when using split Puppet config files
- New or changed parameters:
- Add dhcp_subnets parameter
- Add dhcp_search_domains parameter (is relayed to dhcp::pool)
- Add ensure_packages_version parameter for extra packages, can be set to 'installed', 'present', 'latest' or 'absent'
- Add libvirt_backend, set to 'virsh' for 1.11 compatibility
- Add mcollective_user parameter
- Add puppet_split_config_files parameter, set to false for 1.11 compatibility
- Add ssl_disabled_ciphers parameter for usage with 1.12 or later
- Add tftp_managed parameter. If set to false, theforeman-tftp is not used
- Rename virsh_network to libvirt_network
- Remove autosign_location parameter, note that
#{puppetdir}/autosign.confis used in the proxy code itself for the path. - Remove puppet_cache_location parameter, no longer used by the smart proxy
- Remove deprecated parameters for 1.10 and older
- New or changed parameters on smart proxy plugin classes:
- Add contentdir, reportsdir, failed_dir and configure_openscap_repo to openscap class
- Other changes and fixes:
- Use foreman::providers to install foreman_smartproxy dependencies
- Pass ssl_ca to foreman_smartproxy for rest_v3 provider compatibility
- Change default log level to INFO
- Copy mboot.c32 for TFTP proxies
- Fix ordering of Puppet server installation before proxy user (#14942)
- Compatibility warnings:
- Removed support for Smart Proxy 1.10 and older, 1.11+ is required
- Change puppetrun and puppetrun_listen_on parameters to puppet and puppet_listen_on respectively
- 1.11 users must set
puppet_split_config_files => falsewith Puppet
- New or changed parameters:
- Add dhcp_split_config_files parameter, set to false for 1.10 or prior compatibility
- Add dhcp_provider parameter to replace dhcp_vendor (deprecated)
- Add logs, logs_listen_on parameters to manage new logs smart proxy module
- Add log_buffer, log_buffer_errors parameters
- Add tftp_manage_wget parameter to disable wget installation
- New classes to install smart proxy plugins:
- foreman_proxy::plugin::discovery to install Discovery support
- New or changed parameters on smart proxy plugin classes:
- Warning: removed ssh_user parameter from remote_execution plugin, the user is controlled from the Foreman plugin
- Add local_working_dir, remote_working_dir parameters to remote_execution plugin
- Add version parameter to openscap plugin
- Add pulp_dir, pulp_content_dir, mongodb_dir parameters to pulp plugin
- Add database_path, console_auth parameters to dynflow plugin
- Other changes and fixes:
- Support Puppet 3.0 minimum
- Support Fedora 21, remove Debian 6 (Squeeze), add Ubuntu 16.04
- Create TFTP directories for ZTP and POAP files (#13024)
- Use lower case FQDN to access Puppet SSL certificates (#8389)
- Fix Puppet SSL directory under Puppet 4
- Fix proxy registration URL take current ssl_port parameter value
- Fix kafo data type on generate_keys parameter (#12988)
- Refresh log/log_level parameter documentation
- Fix path to dhcpd.conf on FreeBSD
- Fix DNS providers under 1.10 to have "dns_" prefix (#12157)
- Fix missing kafo data type on powerdns::manage_database parameter
- Test speed improvements
- New or changed parameters:
- Add dns_split_config_files parameter, set to false for 1.9 or prior compatibility
- Add dhcp_server parameter for address of the DHCP server (1.10+)
- Other changes and fixes:
- Support and test module under Puppet 4
- Support version 1.10 with split DNS configuration files
- Add FreeBSD support
- Add foreman_proxy::plugin::remote_execution::ssh and foreman_proxy::plugin::dynflow plugin classes
- Add foreman_proxy::plugin::dns::powerdns plugin class
- Pass dhcp_key_name and secret to DHCP module OMAPI parameters
- Replace random_password/cache_data from theforeman/foreman with puppet/extlib
- New or changed parameters:
- Add puppet_use_cache/puppet_cache_location parameters to control caching functions of the 'puppet' module
- Add new api_* parameters to foreman_proxy::plugin::salt for its access to the Salt API (#8473)
- Add bind_host parameter for smart proxy bind IP/host in 1.8+
- Add salt_puppetrun_cmd parameter to change Salt command used for Puppet runs in 1.8+
- Add dhcp_omapi_port parameter to control the OMAPI port used for ISC dhcpd management in 1.9+
- Other changes and fixes:
- Mark support for new theforeman releases using puppetlabs/concat
- Don't configure dns_key if nsupdate_gss is used (#10436)
- Copy libutil.c32 PXELinux 6 file on Debian 8/Jessie (#10255)
- Copy ldlinux.c32 PXELinux 6 file on Debian 8/Jessie (#10255)
- Change tftp_servername parameter default to undef (#9896)
- Fix template variable lookups under the future parser
- Replace private() for future parser compatibility
- New classes to install smart proxy plugins:
- foreman_proxy::plugin::abrt to install ABRT support
- foreman_proxy::plugin::chef to install Chef support
- foreman_proxy::plugin::openscap to install OpenSCAP support
- foreman_proxy::plugin::salt for Salt management support
- New or changed parameters:
- Add http_port/ssl_port parameters to listen on both HTTP/HTTPS simultaneously, deprecates port parameter (#8990)
- Add *_listen_on parameters to control which modules listen on HTTP and HTTPS ports (#8990)
- Add dhcp_option_domain parameter to change or disable setting dhcpd domain name option
- Add foreman_ssl* parameters to specify keys used to access Foreman API from smart proxy plugins
- Add log_level parameter to control smart proxy logging
- Add plugin_version parameter to change default plugin package ensure value, add version parameter to each plugin class
- Other features:
- Configure templates module for reverse proxying provisioning template requests
- Set :foreman_url for Foreman API location
- Support PXELinux/TFTP installation on Debian 8 (Jessie)
- Manage pulpnode configuration in foreman_proxy::plugin::pulp
- Other changes and fixes:
- Only manage sudo rules if puppetca or puppetrun are enabled
- Use puppetrun_user parameter in sudo rules
- Override TFTP server root from tftp_root parameter
- Improvements for Puppet 4 and future parser support
- Fix compatibility with theforeman/dns 2.0.0
- Fix compatibility with theforeman/puppet 3.0.0
- Fix dependency on LSB facts (#9449)
- Fix third party package resources to use ensure_packages
- Fix metadata quality issues, pinning dependencies
- Add puppetssh_wait parameter (#7860)
- Fix error referencing class that may not have been evaluted
- Set trusted_hosts default value to FQDN
- Validate IP address facts used in DHCP/DNS templates (#7263)
- Fix relationship specification for early Puppet 2.7 releases
- Fix lint issue
- Deploy configuration files for Foreman 1.6 modular smart proxy
- Compatible with 1.6 only, use 1.x versions for 1.5 or older
- Add foreman_proxy::plugin define for installation of proxy plugins
- Add foreman_proxy::plugin::pulp class for Pulp plugin
- Ensure foreman_proxy::service is refreshed after SSL certs change
- Install apipie-bindings package for foreman_smartproxy registration
- Add $version parameter to control package version
- Update puppet.yml config file for directory environment settings
- Fix operatingsystemrelease comparison for CentOS 7
- Fix handling of alias/VLAN interface fact names
- Remove mocha test dependency
- Fix lint issues
- Fix user shell path so it's valid on Debian (#5390)
- Add parameters for all Foreman 1.4 and realm (1.5) features
- Add dns_provider parameter
- Use ensure_packages for non-core wget package
- Remove template source from header for Puppet 3.5 compatibility
- Fix missing dependency on foreman module
- Fix top-scope variable without an explicit namespace
- Add $puppetrun_provider parameter
- Fix disabling of ssl_* settings when $ssl is false
- Puppet 2.6 support deprecated
- Fix stdlib dependency for librarian-puppet
* This Changelog was automatically generated by github_changelog_generator