-
-
Notifications
You must be signed in to change notification settings - Fork 26
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Make pool entry in chrony.conf as a variable #34
Comments
I agree this would be really good. Having default['chrony']['servers'] defined in attributes/default.rb means that you can't override the servers in your own role/environment, as your own settings get merged with the default from the cookbook. |
if you override the value in a cookbook it should replace the hash. |
I haven't tested but my thought is something like |
The problem with this approach is we can't just use the cookbook recipe as-is, and have to produce our own wrapper cookbook. The alternative is maintaining a local fork of the cookbook, but this is far from ideal. |
We did indeed end up creating a wrapper cookbook, with a recipe:
|
removing the pool also doesn't allow the cookbook to be used as is and would still require either a wrapper cookbook, role, environment, or policyfile to define it then somewhere. Ideally this eventually would get re-written as a resource only cookbook like the rest of the sous-chefs cookbooks are moving to. |
Most people will already have a role/environment though. |
We have recommendation from security as part of CIS to use server in chrony.conf rather than pool. Would be nice to remove the hardcoded entry "pool" in chrony.conf template .
The text was updated successfully, but these errors were encountered: