@ziyaoz thanks for working on this, and sorry for my delay on moving progress forward.
ocfweb now has its own Puppet cert, and the necessary files are in the secrets folder. I’m able to make the necessary HTTP request with the following curl command:
curl https://puppetdb:8081/pdb/query/v4/facts/vms --tlsv1 --cacert puppet-ca.pem --cert puppet-cert.pem --key puppet-private.pem
If you contact me I can give you access to these certs.
To make these requests in ocfweb, I’d recommend using the
requests library, and only running it periodically. As an example, I’d look at how we currently handle lab hours.
Let me know if you have any more questions! This is a very exciting project and now it can finally get done!