)]}'
{"scripts/instack-haproxy-cert-update":[{"author":{"_account_id":14985,"name":"Alex Schultz","email":"aschultz@next-development.com","username":"mwhahaha"},"change_message_id":"7dd13f612c3136a6d8436ab7332762ad0a739327","unresolved":false,"context_lines":[{"line_number":21,"context_line":"# add additional EKUs so clients that rely strictly on RFC5280 understand that"},{"line_number":22,"context_line":"# they are allowed to accept the certificate as having valid extensions"},{"line_number":23,"context_line":"/bin/local-getcert resubmit -i \"$REQUEST_NICKNAME\" -w -v -U id-kp-clientAuth \\"},{"line_number":24,"context_line":" -U id-kp-serverAuth"},{"line_number":25,"context_line":""},{"line_number":26,"context_line":"cat $CERT_FILE $KEY_FILE \u003e $OUTPUT_FILE"},{"line_number":27,"context_line":"systemctl reload haproxy"}],"source_content_type":"application/x-shellscript","patch_set":1,"id":"ba2be162_2ba59ab4","line":24,"updated":"2017-03-01 21:47:44.000000000","message":"bashate would like you to properly indent this. Also local-getcert is in /usr/bin for me, perhaps you should drop the path?","commit_id":"fa6d66d25a5b6b66c051197d84758143b653279f"},{"author":{"_account_id":21794,"name":"Dan Trainor","email":"dtrainor@redhat.com","username":"dtrainor"},"change_message_id":"9bb016eaceb456df624cab76ff03872051f2c231","unresolved":false,"context_lines":[{"line_number":21,"context_line":"# add additional EKUs so clients that rely strictly on RFC5280 understand that"},{"line_number":22,"context_line":"# they are allowed to accept the certificate as having valid extensions"},{"line_number":23,"context_line":"/bin/local-getcert resubmit -i \"$REQUEST_NICKNAME\" -w -v -U id-kp-clientAuth \\"},{"line_number":24,"context_line":" -U id-kp-serverAuth"},{"line_number":25,"context_line":""},{"line_number":26,"context_line":"cat $CERT_FILE $KEY_FILE \u003e $OUTPUT_FILE"},{"line_number":27,"context_line":"systemctl reload haproxy"}],"source_content_type":"application/x-shellscript","patch_set":1,"id":"ba2be162_e1b56131","line":24,"in_reply_to":"ba2be162_2ba59ab4","updated":"2017-03-01 22:39:37.000000000","message":"I have no explanation for why that path is fubar, it\u0027s clearly in my environment under /usr/bin as well.  This is probably the result of a sloppy copy/paste, apologies.\n\nI\u0027ve also included bashate in my checklist, thanks for the suggestion.  I\u0027ll have amendments up soon.","commit_id":"fa6d66d25a5b6b66c051197d84758143b653279f"},{"author":{"_account_id":10873,"name":"Juan Antonio Osorio Robles","email":"jaosorior@redhat.com","username":"ejuaoso"},"change_message_id":"47cfd03b7aa74d4f8462c9f187b2d3119aee4acf","unresolved":false,"context_lines":[{"line_number":20,"context_line":""},{"line_number":21,"context_line":"# add additional EKUs so clients that rely strictly on RFC5280 understand that"},{"line_number":22,"context_line":"# they are allowed to accept the certificate as having valid extensions"},{"line_number":23,"context_line":"local-getcert resubmit -i \"$REQUEST_NICKNAME\" -w -v -U id-kp-clientAuth \\"},{"line_number":24,"context_line":"    -U id-kp-serverAuth"},{"line_number":25,"context_line":""},{"line_number":26,"context_line":"cat $CERT_FILE $KEY_FILE \u003e $OUTPUT_FILE"}],"source_content_type":"application/x-shellscript","patch_set":2,"id":"ba2be162_cf48758a","line":23,"range":{"start_line":23,"start_character":0,"end_line":23,"end_character":13},"updated":"2017-03-02 08:59:36.000000000","message":"can you use just getcert? You could furtherly fetch which certificate was used via a hiera call.","commit_id":"d4f1a7747755e03aa340036f3f5a98e36538f95b"},{"author":{"_account_id":21794,"name":"Dan Trainor","email":"dtrainor@redhat.com","username":"dtrainor"},"change_message_id":"1b68368c36a015fbbaea75b391d7098efd5c8f08","unresolved":false,"context_lines":[{"line_number":20,"context_line":""},{"line_number":21,"context_line":"# add additional EKUs so clients that rely strictly on RFC5280 understand that"},{"line_number":22,"context_line":"# they are allowed to accept the certificate as having valid extensions"},{"line_number":23,"context_line":"local-getcert resubmit -i \"$REQUEST_NICKNAME\" -w -v -U id-kp-clientAuth \\"},{"line_number":24,"context_line":"    -U id-kp-serverAuth"},{"line_number":25,"context_line":""},{"line_number":26,"context_line":"cat $CERT_FILE $KEY_FILE \u003e $OUTPUT_FILE"}],"source_content_type":"application/x-shellscript","patch_set":2,"id":"ba2be162_7b39f240","line":23,"range":{"start_line":23,"start_character":0,"end_line":23,"end_character":13},"in_reply_to":"ba2be162_cf48758a","updated":"2017-03-02 15:00:24.000000000","message":"I like that idea, thanks for the suggestion.  Done.","commit_id":"d4f1a7747755e03aa340036f3f5a98e36538f95b"}]}