puppet-prod/modules/incus/manifests/client.pp

# incus::client
#
# This class configures a host as an incus client and exports its certificate
# for automatic trust management on incus servers.
#
class incus::client {

  # Export this client's certificate for collection by incus servers
  @@incus::client_cert { $facts['networking']['fqdn']:
    hostname    => $facts['networking']['fqdn'],
    certificate => $facts['vault_cert_content'],
    fingerprint => $facts['vault_cert_fingerprint'],
    tag         => 'incus_client',
  }

}