From 72a80f89361145f1560ccc248f357a9de82eded6 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Thu, 17 Jan 2013 08:01:44 -0500 Subject: abstracted encryption support from Properties/CfgPrivateKeyCreator to StructFile --- schemas/types.xsd | 8 ++++++++ 1 file changed, 8 insertions(+) (limited to 'schemas') diff --git a/schemas/types.xsd b/schemas/types.xsd index 524b327c5..144ef7337 100644 --- a/schemas/types.xsd +++ b/schemas/types.xsd @@ -371,6 +371,14 @@ + + + + The name of the encryption passphrase that the text content + of this tag is encrypted with. + + + -- cgit v1.2.3-1-g7c22 From aece6f8901711fa9e662b63f4f6b12cb90b84503 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Tue, 30 Oct 2012 09:05:23 -0400 Subject: removed deprecated PostInstall support --- schemas/bundle.xsd | 9 --------- schemas/rules.xsd | 13 ------------- 2 files changed, 22 deletions(-) (limited to 'schemas') diff --git a/schemas/bundle.xsd b/schemas/bundle.xsd index 68e793920..81bb9f0b5 100644 --- a/schemas/bundle.xsd +++ b/schemas/bundle.xsd @@ -80,15 +80,6 @@ - - - - PostInstall entries are deprecated in favor of Action - entries. Actions can do everything PostInstall entries can - do and more. - - - diff --git a/schemas/rules.xsd b/schemas/rules.xsd index ddfb7ad0d..be60abef0 100644 --- a/schemas/rules.xsd +++ b/schemas/rules.xsd @@ -13,10 +13,6 @@ - - - - @@ -126,15 +122,6 @@ - - - - PostInstall entries are deprecated in favor of Action - entries. Actions can do everything PostInstall entries can - do and more. - - - -- cgit v1.2.3-1-g7c22 From 0fc1f472a0fb18911bde1cb99f03142681804476 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Tue, 30 Oct 2012 10:22:02 -0400 Subject: removed deprecated plugins: TGenshi, TCheetah, Account, Hostbase, Snapshots, Statistics, Editor --- schemas/bundle.xsd | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) (limited to 'schemas') diff --git a/schemas/bundle.xsd b/schemas/bundle.xsd index 81bb9f0b5..863e10b4b 100644 --- a/schemas/bundle.xsd +++ b/schemas/bundle.xsd @@ -35,10 +35,7 @@ Abstract implementation of a Path entry. The entry will - either be handled by Cfg, TGenshi, or another - Generator plugin; or handled by Rules, in which case - the full specification of this entry will be included in - Rules. + be handled by a Generator plugin, like Cfg or Rules. -- cgit v1.2.3-1-g7c22 From dfe9dac83a9f6553b9d075fa14fcd28235aabda9 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Mon, 4 Feb 2013 13:51:38 -0500 Subject: updated StructFile schemas to allow genshi attrs/elements --- schemas/authorizedkeys.xsd | 10 ++++++++++ schemas/fileprobes.xsd | 7 +++++++ schemas/nagiosgen.xsd | 8 ++++++++ schemas/packages.xsd | 10 ++++++++++ schemas/privkey.xsd | 9 +++++++++ schemas/pubkey.xsd | 3 +++ schemas/sslca-cert.xsd | 7 +++++++ schemas/sslca-key.xsd | 7 +++++++ 8 files changed, 61 insertions(+) (limited to 'schemas') diff --git a/schemas/authorizedkeys.xsd b/schemas/authorizedkeys.xsd index 848f99bae..ca238d492 100644 --- a/schemas/authorizedkeys.xsd +++ b/schemas/authorizedkeys.xsd @@ -6,6 +6,9 @@ + + @@ -18,6 +21,7 @@ + @@ -40,6 +44,7 @@ + @@ -50,6 +55,7 @@ + @@ -75,6 +81,7 @@ + @@ -85,6 +92,7 @@ parameters. + @@ -96,10 +104,12 @@ + + diff --git a/schemas/fileprobes.xsd b/schemas/fileprobes.xsd index 0dfb8cdd2..4fe168c98 100644 --- a/schemas/fileprobes.xsd +++ b/schemas/fileprobes.xsd @@ -6,25 +6,32 @@ + + + + + + diff --git a/schemas/nagiosgen.xsd b/schemas/nagiosgen.xsd index 99d6b91c6..0ef1fb064 100644 --- a/schemas/nagiosgen.xsd +++ b/schemas/nagiosgen.xsd @@ -6,23 +6,31 @@ + + + + + + + diff --git a/schemas/packages.xsd b/schemas/packages.xsd index dbee2f31b..948402ca5 100644 --- a/schemas/packages.xsd +++ b/schemas/packages.xsd @@ -8,6 +8,8 @@ + @@ -40,6 +42,7 @@ + @@ -58,6 +61,7 @@ + @@ -107,6 +111,7 @@ + @@ -202,10 +207,12 @@ + + @@ -213,16 +220,19 @@ + + + diff --git a/schemas/privkey.xsd b/schemas/privkey.xsd index f6de534c1..9446d5777 100644 --- a/schemas/privkey.xsd +++ b/schemas/privkey.xsd @@ -5,6 +5,9 @@ + + @@ -19,6 +22,7 @@ + @@ -42,6 +46,7 @@ + @@ -74,6 +79,7 @@ + @@ -97,6 +103,7 @@ + @@ -107,6 +114,7 @@ + @@ -150,6 +158,7 @@ + diff --git a/schemas/pubkey.xsd b/schemas/pubkey.xsd index 5671a818d..38d47ed0a 100644 --- a/schemas/pubkey.xsd +++ b/schemas/pubkey.xsd @@ -5,6 +5,9 @@ + + diff --git a/schemas/sslca-cert.xsd b/schemas/sslca-cert.xsd index a9c01fb29..97e258d78 100644 --- a/schemas/sslca-cert.xsd +++ b/schemas/sslca-cert.xsd @@ -5,6 +5,9 @@ + + @@ -17,6 +20,7 @@ + @@ -40,6 +44,7 @@ + @@ -147,6 +152,7 @@ + @@ -157,6 +163,7 @@ + diff --git a/schemas/sslca-key.xsd b/schemas/sslca-key.xsd index efd4abd58..844304908 100644 --- a/schemas/sslca-key.xsd +++ b/schemas/sslca-key.xsd @@ -5,6 +5,9 @@ + + @@ -17,6 +20,7 @@ + @@ -39,6 +43,7 @@ + @@ -68,6 +73,7 @@ + @@ -78,6 +84,7 @@ + -- cgit v1.2.3-1-g7c22 From 1f6cb52d0c43f842766f3ecd6c8286f0f4eed5c2 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Mon, 4 Feb 2013 16:20:46 -0500 Subject: Bundler: various changes * Deprecated use of an explicit name attribute * Deprecated .genshi bundles * Minor restructuring for better performance * bcfg2-lint updates --- schemas/authorizedkeys.xsd | 3 ++- schemas/bundle.xsd | 7 ++++--- schemas/fileprobes.xsd | 3 ++- schemas/nagiosgen.xsd | 3 ++- schemas/packages.xsd | 3 ++- schemas/privkey.xsd | 5 +++-- schemas/pubkey.xsd | 3 ++- schemas/sslca-cert.xsd | 3 ++- schemas/sslca-key.xsd | 3 ++- 9 files changed, 21 insertions(+), 12 deletions(-) (limited to 'schemas') diff --git a/schemas/authorizedkeys.xsd b/schemas/authorizedkeys.xsd index ca238d492..b0495c242 100644 --- a/schemas/authorizedkeys.xsd +++ b/schemas/authorizedkeys.xsd @@ -1,4 +1,5 @@ - + Schema for :ref:`server-plugins-generators-cfg-sshkeys` diff --git a/schemas/bundle.xsd b/schemas/bundle.xsd index 863e10b4b..1b997ede3 100644 --- a/schemas/bundle.xsd +++ b/schemas/bundle.xsd @@ -256,11 +256,12 @@ - + - The name of the bundle. This must match the bundle - filename, minus the extension. + The name of the bundle. If present, this must match the + bundle filename, minus the extension. Specifying the name + explicitly is deprecated. diff --git a/schemas/fileprobes.xsd b/schemas/fileprobes.xsd index 4fe168c98..12f60378c 100644 --- a/schemas/fileprobes.xsd +++ b/schemas/fileprobes.xsd @@ -1,4 +1,5 @@ - + FileProbes plugin config schema for bcfg2 diff --git a/schemas/nagiosgen.xsd b/schemas/nagiosgen.xsd index 0ef1fb064..b3ccf5095 100644 --- a/schemas/nagiosgen.xsd +++ b/schemas/nagiosgen.xsd @@ -1,4 +1,5 @@ - + NagiosGen config schema for bcfg2 diff --git a/schemas/packages.xsd b/schemas/packages.xsd index 948402ca5..9e7489d51 100644 --- a/schemas/packages.xsd +++ b/schemas/packages.xsd @@ -1,4 +1,5 @@ - + packages config schema for bcfg2 diff --git a/schemas/privkey.xsd b/schemas/privkey.xsd index 9446d5777..392f28e97 100644 --- a/schemas/privkey.xsd +++ b/schemas/privkey.xsd @@ -1,4 +1,5 @@ - + Schema for :ref:`server-plugins-generators-cfg-sshkeys` ``privkey.xml`` @@ -77,9 +78,9 @@ + - diff --git a/schemas/pubkey.xsd b/schemas/pubkey.xsd index 38d47ed0a..f3ffc7f44 100644 --- a/schemas/pubkey.xsd +++ b/schemas/pubkey.xsd @@ -1,4 +1,5 @@ - + Schema for :ref:`server-plugins-generators-cfg-sshkeys` ``pubkey.xml`` diff --git a/schemas/sslca-cert.xsd b/schemas/sslca-cert.xsd index 97e258d78..99fb2be99 100644 --- a/schemas/sslca-cert.xsd +++ b/schemas/sslca-cert.xsd @@ -1,4 +1,5 @@ - + Schema for :ref:`server-plugins-generators-sslca` ``cert.xml`` diff --git a/schemas/sslca-key.xsd b/schemas/sslca-key.xsd index 844304908..021da275c 100644 --- a/schemas/sslca-key.xsd +++ b/schemas/sslca-key.xsd @@ -1,4 +1,5 @@ - + Schema for :ref:`server-plugins-generators-sslca` ``key.xml`` -- cgit v1.2.3-1-g7c22 From f05d66c4858f9757b1a372f0a5de2c956c058f00 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Tue, 5 Feb 2013 08:58:41 -0500 Subject: Decisions: use StructFile instead of host- or group-specific XML files --- schemas/decisions.xsd | 77 +++++++++++++++++++++++++++++++++++++++++---------- 1 file changed, 63 insertions(+), 14 deletions(-) (limited to 'schemas') diff --git a/schemas/decisions.xsd b/schemas/decisions.xsd index 30115b367..c87d2a984 100644 --- a/schemas/decisions.xsd +++ b/schemas/decisions.xsd @@ -1,5 +1,6 @@ - - + + decision list schema for bcfg2 @@ -7,16 +8,64 @@ - - - - - - - - - - - - + + + + + + A **DecisionsGroupType** is a tag used to provide logic. + Child entries of a DecisionsGroupType tag only apply to + machines that match the condition specified -- either + membership in a group, or a matching client name. + :xml:attribute:`DecisionsGroupType:negate` can be set to + negate the sense of the match. + + + + + + + + + + + + + The name of the client or group to match on. Child entries + will only apply to this client or group (unless + :xml:attribute:`DecisionsGroupType:negate` is set). + + + + + + + Negate the sense of the match, so that child entries only + apply to a client if it is not a member of the given group + or does not have the given name. + + + + + + + + + + + + + + + + + + + + + + + + -- cgit v1.2.3-1-g7c22 From 906b38cf27bad87b78b457f86db46e6cae5384b7 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Tue, 5 Feb 2013 08:59:30 -0500 Subject: misc. schema and schema doc fixes --- schemas/packages.xsd | 1 - schemas/privkey.xsd | 2 +- 2 files changed, 1 insertion(+), 2 deletions(-) (limited to 'schemas') diff --git a/schemas/packages.xsd b/schemas/packages.xsd index 9e7489d51..2645a8be0 100644 --- a/schemas/packages.xsd +++ b/schemas/packages.xsd @@ -112,7 +112,6 @@ - diff --git a/schemas/privkey.xsd b/schemas/privkey.xsd index 392f28e97..cf53904f0 100644 --- a/schemas/privkey.xsd +++ b/schemas/privkey.xsd @@ -14,7 +14,7 @@ - An **PrivateKeyGroupType** is a tag used to provide logic. + A **PrivateKeyGroupType** is a tag used to provide logic. Child entries of a PrivateKeyGroupType tag only apply to machines that match the condition specified -- either membership in a group, or a matching client name. -- cgit v1.2.3-1-g7c22 From 7db65d41386768a5081c34c16db17e82b96a5b7a Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Thu, 7 Feb 2013 08:26:39 -0500 Subject: made XInlcude and Encryption support more consistent --- schemas/authorizedkeys.xsd | 24 +++++++++++++----------- schemas/info.xsd | 22 ++++++++++++---------- schemas/sslca-cert.xsd | 24 +++++++++++++----------- schemas/sslca-key.xsd | 22 ++++++++++++---------- 4 files changed, 50 insertions(+), 42 deletions(-) (limited to 'schemas') diff --git a/schemas/authorizedkeys.xsd b/schemas/authorizedkeys.xsd index b0495c242..fd8f2a7a3 100644 --- a/schemas/authorizedkeys.xsd +++ b/schemas/authorizedkeys.xsd @@ -26,6 +26,7 @@ + @@ -97,20 +98,21 @@ - + Top-level tag for describing a generated SSH key pair. - - - - - - - - - - + + + + + + + + + + + diff --git a/schemas/info.xsd b/schemas/info.xsd index 24538ffe3..9b898a168 100644 --- a/schemas/info.xsd +++ b/schemas/info.xsd @@ -92,6 +92,7 @@ + @@ -121,19 +122,20 @@ - + Top-level tag for ``info.xml``. - - - - - - - - - + + + + + + + + + + diff --git a/schemas/sslca-cert.xsd b/schemas/sslca-cert.xsd index 99fb2be99..49d821aaf 100644 --- a/schemas/sslca-cert.xsd +++ b/schemas/sslca-cert.xsd @@ -26,6 +26,7 @@ + @@ -156,20 +157,21 @@ - + Top-level tag for describing an SSLCA generated certificate. - - - - - - - - - - + + + + + + + + + + + diff --git a/schemas/sslca-key.xsd b/schemas/sslca-key.xsd index 021da275c..2b6a02b98 100644 --- a/schemas/sslca-key.xsd +++ b/schemas/sslca-key.xsd @@ -25,6 +25,7 @@ + @@ -77,19 +78,20 @@ - + Top-level tag for describing an SSLCA generated key. - - - - - - - - - + + + + + + + + + + -- cgit v1.2.3-1-g7c22 From 398be2c5cb613d9506e0c115510c1b55881ca64e Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Fri, 8 Feb 2013 13:43:40 -0500 Subject: Bundler: added support for independent bundles --- schemas/bundle.xsd | 16 +++++++++++++--- 1 file changed, 13 insertions(+), 3 deletions(-) (limited to 'schemas') diff --git a/schemas/bundle.xsd b/schemas/bundle.xsd index 1b997ede3..e180d265a 100644 --- a/schemas/bundle.xsd +++ b/schemas/bundle.xsd @@ -256,12 +256,22 @@ + + + + If set to ``true``, indicates that the bundle is a + collection of independent entries, and that service restarts + and modified actions should not be performed. See + :ref:`server-plugins-structures-bundler-magic` for more. + + + - The name of the bundle. If present, this must match the - bundle filename, minus the extension. Specifying the name - explicitly is deprecated. + **Deprecated.** The name of the bundle. If present, this + must match the bundle filename, minus the extension. + Specifying the name explicitly is deprecated. -- cgit v1.2.3-1-g7c22 From 1ce53cdcd4803d4b0c3c9440ec352addf534bd67 Mon Sep 17 00:00:00 2001 From: Matt Schwager Date: Wed, 10 Oct 2012 10:17:46 -0400 Subject: Added access control list's XML schema --- schemas/acl.xsd | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 schemas/acl.xsd (limited to 'schemas') diff --git a/schemas/acl.xsd b/schemas/acl.xsd new file mode 100644 index 000000000..af0d8e318 --- /dev/null +++ b/schemas/acl.xsd @@ -0,0 +1,20 @@ + + + + + acl config schema for bcfg2 + Matt Schwager + + + + + + + + + + + + -- cgit v1.2.3-1-g7c22 From 0253b04b9ba7c3e4ef139bf352b7a57de823daaa Mon Sep 17 00:00:00 2001 From: Matt Schwager Date: Fri, 19 Oct 2012 13:37:49 -0400 Subject: Added CIDR notation to IP ACLs. Still need to test. --- schemas/acl.xsd | 2 ++ 1 file changed, 2 insertions(+) (limited to 'schemas') diff --git a/schemas/acl.xsd b/schemas/acl.xsd index af0d8e318..0c3e3ecdd 100644 --- a/schemas/acl.xsd +++ b/schemas/acl.xsd @@ -14,6 +14,8 @@ + -- cgit v1.2.3-1-g7c22 From 5363e6d9a53146333da0d109aae170befc1b9481 Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Tue, 12 Feb 2013 07:48:33 -0500 Subject: Added client ACLs: * IP and CIDR-based ACLs * Metadata (group/hostname)-based ACLs * Documentation * Unit tests --- schemas/acl-ip.xsd | 56 ++++++++++++++++++++++++++++++++++ schemas/acl-metadata.xsd | 79 ++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 135 insertions(+) create mode 100644 schemas/acl-ip.xsd create mode 100644 schemas/acl-metadata.xsd (limited to 'schemas') diff --git a/schemas/acl-ip.xsd b/schemas/acl-ip.xsd new file mode 100644 index 000000000..1d6106c05 --- /dev/null +++ b/schemas/acl-ip.xsd @@ -0,0 +1,56 @@ + + + + Schema for IP-based client ACLs: + :ref:`server-plugins-misc-acl` ``ip.xml`` + + + + + + + + The name of the XML-RPC method to allow or deny. Limited + wildcards are supported. + + + + + + + The IP address to match against. This is an exact match + unless :xml:attribute:`IPACLType:netmask` is defined. If + this is not defined, all addresses match the given rule. + + + + + + + If this is defined, then it is combined with + :xml:attribute:`IPACLType:address` to produce a CIDR range, + which is used for matching instead of exact matching based + only on IP address. This can be either an integer netmask + (e.g., ``netmask="24"``) or a dotted-quad (e.g., + ``netmask="255.255.255.0"``). + + + + + + + + + Top-level tag for describing metadata-based client ACLs. + + + + + + + + + + + + diff --git a/schemas/acl-metadata.xsd b/schemas/acl-metadata.xsd new file mode 100644 index 000000000..7d996fb87 --- /dev/null +++ b/schemas/acl-metadata.xsd @@ -0,0 +1,79 @@ + + + + Schema for metadata-based client ACLs: + :ref:`server-plugins-misc-acl` ``metadata.xml`` + + + + + + + + + An **MetadataACLGroupType** is a tag used to provide logic. + Child entries of a MetadataACLGroupType tag only apply to + machines that match the condition specified -- either + membership in a group, or a matching client name. + :xml:attribute:`MetadataACLGroupType:negate` can be set to + negate the sense of the match. + + + + + + + The name of the client or group to match on. Child entries + will only apply to this client or group (unless + :xml:attribute:`MetadataACLGroupType:negate` is set). + + + + + + + Negate the sense of the match, so that child entries only + apply to a client if it is not a member of the given group + or does not have the given name. + + + + + + + + + + + The name of the XML-RPC method to allow or deny. Limited + wildcards are supported. + + + + + + + + + + Top-level tag for describing metadata-based client ACLs. + + + + + + + + + + + + + + + + + + -- cgit v1.2.3-1-g7c22 From 088ca5fee4cc99f9143f18a880cdec6712326e1e Mon Sep 17 00:00:00 2001 From: "Chris St. Pierre" Date: Tue, 12 Feb 2013 09:47:04 -0500 Subject: fixed unit tests --- schemas/acl-metadata.xsd | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) (limited to 'schemas') diff --git a/schemas/acl-metadata.xsd b/schemas/acl-metadata.xsd index 7d996fb87..68994c940 100644 --- a/schemas/acl-metadata.xsd +++ b/schemas/acl-metadata.xsd @@ -21,7 +21,7 @@ negate the sense of the match. - + @@ -61,11 +61,11 @@ Top-level tag for describing metadata-based client ACLs. - + - + -- cgit v1.2.3-1-g7c22