feat: add incus auto-client certificate trust (#406)

- add fact to export vault public cert from agents
- add fact to export list of trusted incus client certs
- add method for incus clients to export their client cert to be trusted

Reviewed-on: #406
This commit was merged in pull request #406.
This commit is contained in:
2025-10-17 22:46:26 +11:00
parent fac90c66db
commit d8b354558d
7 changed files with 125 additions and 0 deletions
+5
View File
@@ -92,5 +92,10 @@ class incus (
}
}
}
# Collect exported client certificates and manage trust
Incus::Client_cert <<| tag == 'incus_client' |>> {
require => Service['incus'],
}
}
}