Uploaded image for project: 'CFEngine Community'
  1. CFEngine Community
  2. CFE-3427

Mitigate confusion about bundle server access_rules

    XMLWordPrintable

    Details

    • Type: Story
    • Status: Done
    • Priority: (None)
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 3.17.0
    • Component/s: None
    • Labels:
      None

      Description

      Many times I have seen confusion about bundle server access_rules, usually along the lines of:

      • Any access promises must be defined in this bundle
      • The name is somehow special

      The fact that the documentation shows an example with bundle server access_rules doesn't help. People copy pasta, then get an error: Duplicate definition of bundle access_rules with type server. This probably leads them to customize the bundle vendored in the policy instead of creating their own server bundle.

      1) Rename the bundle in the example to bundle server my_access_rules so that it's more clear that it can be a custom name.
      2) Change the name of the bundle in the MPF from bundle server access_rules which is generic and seems like it might be magically special to bundle server mpf_default_access_rules.

        Attachments

          Activity

            People

            • Assignee:
              a10042 Nick Anderson
              Reporter:
              a10042 Nick Anderson
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Summary Panel