system/puppet: add --certname parameter

certname [1] can be a useful parameter when we need to specify a certificate name different from the default value [2] in Puppet. Ex: the hosts have different names, in advanced network isolation setups. Also, it can be used when we want to run Puppet with a specific node definition and not using hostname or fqdn to match the nodes where we want to run Puppet [3] (not recommended by Puppetlabs though). [1] https://docs.puppetlabs.com/puppet/latest/reference/configuration.html#certname [2] Defaults to the node’s fully qualified domain name [3] http://docs.puppetlabs.com/puppet/latest/reference/lang_node_definitions.html#naming
2016-02-08 21:04:08 -05:00 · 2016-02-08 21:04:08 -05:00 · 6193ed4b0d
commit 6193ed4b0d
parent f5e798f13c
1 changed files with 14 additions and 0 deletions
--- a/system/puppet.py
+++ b/system/puppet.py
@ -74,6 +74,12 @@ options:
    default: stdout
    choices: [ 'stdout', 'syslog' ]
    version_added: "2.1"
+  certname:
+    description:
+      - The name to use when handling certificates.
+    required: false
+    default: None
+    version_added: "2.1"
 requirements: [ puppet ]
 author: "Monty Taylor (@emonty)"
 '''
@ -87,6 +93,9 @@ EXAMPLES = '''

 # Run puppet using a different environment
 - puppet: environment=testing
+
+# Run puppet using a specific certname
+- puppet: certname=agent01.example.com
 '''


@ -127,6 +136,7 @@ def main():
            facts=dict(default=None),
            facter_basename=dict(default='ansible'),
            environment=dict(required=False, default=None),
+            certname=dict(required=False, default=None),
        ),
        supports_check_mode=True,
        mutually_exclusive=[
@ -189,6 +199,8 @@ def main():
            cmd += " --show_diff"
        if p['environment']:
            cmd += " --environment '%s'" % p['environment']
+        if p['certname']:
+            cmd += " --certname='%s'" % p['certname']
        if module.check_mode:
            cmd += " --noop"
        else:
@ -199,6 +211,8 @@ def main():
            cmd += "--logdest syslog "
        if p['environment']:
            cmd += "--environment '%s' " % p['environment']
+        if p['certname']:
+            cmd += " --certname='%s'" % p['certname']
        if module.check_mode:
            cmd += "--noop "
        else: