Set explicit certname when using curl|bash install

reidmv · reidmv · commit ff8502eece62 · 2020-03-17T10:47:02.000-07:00
This is because the curl|bash installer overrides certname and server
settings when installing. In the event a server needs to use a certname
which is NOT the same as the system's configured hostname, the certname
must be set manually at agent install time.
diff --git a/plans/action/install.pp b/plans/action/install.pp
@@ -290,31 +290,38 @@
     server        => $master_target.peadm::target_name(),
     install_flags => [
       '--puppet-service-ensure', 'stopped',
+      "main:certname=${master_replica_target.peadm::target_name()}",
       "main:dns_alt_names=${dns_alt_names_csv}",
       "extension_requests:${pp_application}=puppet/master",
       "extension_requests:${pp_cluster}=B",
     ],
   )
 
-  run_task('peadm::agent_install', $compiler_a_targets,
-    server        => $master_target.peadm::target_name(),
-    install_flags => [
-      '--puppet-service-ensure', 'stopped',
-      "main:dns_alt_names=${dns_alt_names_csv}",
-      "extension_requests:${pp_application}=puppet/compiler",
-      "extension_requests:${pp_cluster}=A",
-    ],
-  )
+  $compiler_a_targets.each |$target| {
+    run_task('peadm::agent_install', $target,
+      server        => $master_target.peadm::target_name(),
+      install_flags => [
+        '--puppet-service-ensure', 'stopped',
+        "main:certname=${target.peadm::target_name()}",
+        "main:dns_alt_names=${dns_alt_names_csv}",
+        "extension_requests:${pp_application}=puppet/compiler",
+        "extension_requests:${pp_cluster}=A",
+      ],
+    )
+  }
 
-  run_task('peadm::agent_install', $compiler_b_targets,
-    server        => $master_target.peadm::target_name(),
-    install_flags => [
-      '--puppet-service-ensure', 'stopped',
-      "main:dns_alt_names=${dns_alt_names_csv}",
-      "extension_requests:${pp_application}=puppet/compiler",
-      "extension_requests:${pp_cluster}=B",
-    ],
-  )
+  $compiler_b_targets.each |$target| {
+    run_task('peadm::agent_install', $target,
+      server        => $master_target.peadm::target_name(),
+      install_flags => [
+        '--puppet-service-ensure', 'stopped',
+        "main:certname=${target.peadm::target_name()}",
+        "main:dns_alt_names=${dns_alt_names_csv}",
+        "extension_requests:${pp_application}=puppet/compiler",
+        "extension_requests:${pp_cluster}=B",
+      ],
+    )
+  }
 
   # Ensure certificate requests have been submitted
   run_task('peadm::submit_csr', $agent_installer_targets)
