Foreman 1.14.0-RC1 available for testing

Foreman 1.14.0-RC1 is now available for testing - the first of the
release candidates for the upcoming 1.14 version.

Please help by testing and getting it release-ready, and look out for
new release candidates approximately every two weeks with the latest bug
fixes.

Installation quick start:
https://theforeman.org/manuals/1.14/quickstart_guide.html

Upgrade instructions:
https://theforeman.org/manuals/1.14/index.html#3.6Upgrade

Release notes:
https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14

This is also a good time to improve translations for existing locales to
ensure full coverage. Help out at
https://www.transifex.com/foreman/foreman/dashboard/.

Changes in this release

··· ======================= This release contains many varied changes, including:
  • Email configuration has moved into the settings UI/API
  • IPv6 address assignment or generation for hosts on compute resources
  • Orgs/locations can be assigned to LDAP users on creation
  • Session support in the API via cookies
  • Smart Proxy’s MS DHCP provider now uses a native API
  • Smart Proxy’s Puppet importer uses a new Puppet Server API

Testing of these particular changes is quite important for the release,
but many other features and bug fixes can be found listed in the release
notes by category.

Please have a look through for anything that you might rely on and give
it a test:
https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14

Two lower priority security issues have also been fixed in this release:

  • CVE-2016-7077: information disclosure from association lists shown
    without authorization
  • CVE-2016-8634: organizations/locations wizard may run stored XSS in name

Lastly, do take note of the upgrade warnings and deprecations in this
release:
https://theforeman.org/manuals/1.14/index.html#Upgradewarnings

Downloads

Packages may be found in the 1.14 directories on both deb.foreman.org
and yum.theforeman.org, and tarballs are on downloads.theforeman.org.

The GPG key used for RPMs and tarballs has the following fingerprint:
AF74 2A91 BF76 6333 E9FF 5EAA BFE5 1511 F06D 8950
(Foreman :: Security)

Bug reporting

If you come across a bug in your testing, please file it and note the
version of Foreman that you’re using in the report.

Foreman: Foreman
Proxy: Foreman
Installer:
Foreman


Dominic Cleal
dominic@cleal.org

Looks like centos-release-scl-rh-2-2 has the wrong key?

nodejs-css-loader and foreman (two packages I picked at random) both use
PGP#f06d8950 but rpm -K for centos-release-scl-rh gives me PGP#f4a80eb5

··· On Wednesday, December 14, 2016 at 10:04:47 AM UTC+1, Dominic Cleal wrote: > > Foreman 1.14.0-RC1 is now available for testing - the first of the > release candidates for the upcoming 1.14 version. > > Please help by testing and getting it release-ready, and look out for > new release candidates approximately every two weeks with the latest bug > fixes. > > Installation quick start: > https://theforeman.org/manuals/1.14/quickstart_guide.html > > Upgrade instructions: > https://theforeman.org/manuals/1.14/index.html#3.6Upgrade > > Release notes: > https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14 > > This is also a good time to improve translations for existing locales to > ensure full coverage. Help out at > https://www.transifex.com/foreman/foreman/dashboard/. > > Changes in this release > ======================= > This release contains many varied changes, including: > > - Email configuration has moved into the settings UI/API > - IPv6 address assignment or generation for hosts on compute resources > - Orgs/locations can be assigned to LDAP users on creation > - Session support in the API via cookies > - Smart Proxy's MS DHCP provider now uses a native API > - Smart Proxy's Puppet importer uses a new Puppet Server API > > Testing of these particular changes is quite important for the release, > but many other features and bug fixes can be found listed in the release > notes by category. > > Please have a look through for anything that you might rely on and give > it a test: > https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14 > > Two lower priority security issues have also been fixed in this release: > > - CVE-2016-7077: information disclosure from association lists shown > without authorization > - CVE-2016-8634: organizations/locations wizard may run stored XSS in name > > Lastly, do take note of the upgrade warnings and deprecations in this > release: > https://theforeman.org/manuals/1.14/index.html#Upgradewarnings > > Downloads > ========= > Packages may be found in the 1.14 directories on both deb.foreman.org > and yum.theforeman.org, and tarballs are on downloads.theforeman.org. > > The GPG key used for RPMs and tarballs has the following fingerprint: > AF74 2A91 BF76 6333 E9FF 5EAA BFE5 1511 F06D 8950 > (https://theforeman.org/security.html#GPGkeys) > > Bug reporting > ============= > If you come across a bug in your testing, please file it and note the > version of Foreman that you're using in the report. > > Foreman: http://projects.theforeman.org/projects/foreman/issues/new > Proxy: http://projects.theforeman.org/projects/smart-proxy/issues/new > Installer: > http://projects.theforeman.org/projects/puppet-foreman/issues/new > > -- > Dominic Cleal > dominic@cleal.org > > >

This version still does not support Puppet Server 2.7? Based on the
compatibility table, it is listed up to 2.6 only.

··· On Wednesday, December 14, 2016 at 5:04:47 PM UTC+8, Dominic Cleal wrote: > > Foreman 1.14.0-RC1 is now available for testing - the first of the > release candidates for the upcoming 1.14 version. > > Please help by testing and getting it release-ready, and look out for > new release candidates approximately every two weeks with the latest bug > fixes. > > Installation quick start: > https://theforeman.org/manuals/1.14/quickstart_guide.html > > Upgrade instructions: > https://theforeman.org/manuals/1.14/index.html#3.6Upgrade > > Release notes: > https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14 > > This is also a good time to improve translations for existing locales to > ensure full coverage. Help out at > https://www.transifex.com/foreman/foreman/dashboard/. > > Changes in this release > ======================= > This release contains many varied changes, including: > > - Email configuration has moved into the settings UI/API > - IPv6 address assignment or generation for hosts on compute resources > - Orgs/locations can be assigned to LDAP users on creation > - Session support in the API via cookies > - Smart Proxy's MS DHCP provider now uses a native API > - Smart Proxy's Puppet importer uses a new Puppet Server API > > Testing of these particular changes is quite important for the release, > but many other features and bug fixes can be found listed in the release > notes by category. > > Please have a look through for anything that you might rely on and give > it a test: > https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14 > > Two lower priority security issues have also been fixed in this release: > > - CVE-2016-7077: information disclosure from association lists shown > without authorization > - CVE-2016-8634: organizations/locations wizard may run stored XSS in name > > Lastly, do take note of the upgrade warnings and deprecations in this > release: > https://theforeman.org/manuals/1.14/index.html#Upgradewarnings > > Downloads > ========= > Packages may be found in the 1.14 directories on both deb.foreman.org > and yum.theforeman.org, and tarballs are on downloads.theforeman.org. > > The GPG key used for RPMs and tarballs has the following fingerprint: > AF74 2A91 BF76 6333 E9FF 5EAA BFE5 1511 F06D 8950 > (https://theforeman.org/security.html#GPGkeys) > > Bug reporting > ============= > If you come across a bug in your testing, please file it and note the > version of Foreman that you're using in the report. > > Foreman: http://projects.theforeman.org/projects/foreman/issues/new > Proxy: http://projects.theforeman.org/projects/smart-proxy/issues/new > Installer: > http://projects.theforeman.org/projects/puppet-foreman/issues/new > > -- > Dominic Cleal > dom...@cleal.org > > >

Getting the following message when running " apt-get update && apt-get -y
install foreman-installer"

root@ubuntutest:~# apt-get update && apt-get -y install foreman-installer
Ign:1 http://deb.theforeman.org xenial InRelease
Hit:2 http://nyc2.mirrors.digitalocean.com/mariadb/repo/10.1/ubuntu xenial
InRelease
Ign:3 http://apt.puppetlabs.com xenial InRelease
Hit:4 http://ppa.launchpad.net/ondrej/php/ubuntu xenial InRelease
Hit:5 http://apt.puppetlabs.com xenial Release
Hit:6 http://archive.canonical.com/ubuntu xenial InRelease
Ign:7 http://deb.theforeman.org plugins InRelease
Hit:9 http://ppa.launchpad.net/webupd8team/sublime-text-3/ubuntu xenial
InRelease
Hit:11 http://mirrors.ocf.berkeley.edu/ubuntu xenial InRelease
Get:12 http://mirrors.ocf.berkeley.edu/ubuntu xenial-updates InRelease [102
kB]
Get:14 http://mirrors.ocf.berkeley.edu/ubuntu xenial-backports InRelease
[102 kB]
Get:10 http://deb.theforeman.org xenial Release [24.7 kB]
Get:15 http://mirrors.ocf.berkeley.edu/ubuntu xenial-security InRelease
[102 kB]
Get:16 http://mirrors.ocf.berkeley.edu/ubuntu xenial-proposed InRelease
[253 kB]
Get:13 http://deb.theforeman.org plugins Release [67.8 kB]
Get:17 http://deb.theforeman.org xenial Release.gpg [836 B]
Get:18 http://deb.theforeman.org plugins Release.gpg [836 B]
Fetched 654 kB in 2s (254 kB/s)
Reading package lists… Done
E: Failed to fetch http://deb.theforeman.org/dists/xenial/Release Invalid
'Valid-Until' entry in Release file
/var/lib/apt/lists/partial/deb.theforeman.org_dists_xenial_Release
E: Failed to fetch http://deb.theforeman.org/dists/plugins/Release Invalid
'Valid-Until' entry in Release file
/var/lib/apt/lists/partial/deb.theforeman.org_dists_plugins_Release
E: Some index files failed to download. They have been ignored, or old ones
used instead.

··· On Wednesday, December 14, 2016 at 3:04:47 AM UTC-6, Dominic Cleal wrote: > > Foreman 1.14.0-RC1 is now available for testing - the first of the > release candidates for the upcoming 1.14 version. > > Please help by testing and getting it release-ready, and look out for > new release candidates approximately every two weeks with the latest bug > fixes. > > Installation quick start: > https://theforeman.org/manuals/1.14/quickstart_guide.html > > Upgrade instructions: > https://theforeman.org/manuals/1.14/index.html#3.6Upgrade > > Release notes: > https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14 > > This is also a good time to improve translations for existing locales to > ensure full coverage. Help out at > https://www.transifex.com/foreman/foreman/dashboard/. > > Changes in this release > ======================= > This release contains many varied changes, including: > > - Email configuration has moved into the settings UI/API > - IPv6 address assignment or generation for hosts on compute resources > - Orgs/locations can be assigned to LDAP users on creation > - Session support in the API via cookies > - Smart Proxy's MS DHCP provider now uses a native API > - Smart Proxy's Puppet importer uses a new Puppet Server API > > Testing of these particular changes is quite important for the release, > but many other features and bug fixes can be found listed in the release > notes by category. > > Please have a look through for anything that you might rely on and give > it a test: > https://theforeman.org/manuals/1.14/index.html#Releasenotesfor1.14 > > Two lower priority security issues have also been fixed in this release: > > - CVE-2016-7077: information disclosure from association lists shown > without authorization > - CVE-2016-8634: organizations/locations wizard may run stored XSS in name > > Lastly, do take note of the upgrade warnings and deprecations in this > release: > https://theforeman.org/manuals/1.14/index.html#Upgradewarnings > > Downloads > ========= > Packages may be found in the 1.14 directories on both deb.foreman.org > and yum.theforeman.org, and tarballs are on downloads.theforeman.org. > > The GPG key used for RPMs and tarballs has the following fingerprint: > AF74 2A91 BF76 6333 E9FF 5EAA BFE5 1511 F06D 8950 > (https://theforeman.org/security.html#GPGkeys) > > Bug reporting > ============= > If you come across a bug in your testing, please file it and note the > version of Foreman that you're using in the report. > > Foreman: http://projects.theforeman.org/projects/foreman/issues/new > Proxy: http://projects.theforeman.org/projects/smart-proxy/issues/new > Installer: > http://projects.theforeman.org/projects/puppet-foreman/issues/new > > -- > Dominic Cleal > dom...@cleal.org > > >

> Looks like centos-release-scl-rh-2-2 has the wrong key?

> nodejs-css-loader and foreman (two packages I picked at random) both use PGP#f06d8950 but rpm -K for centos-release-scl-rh gives me PGP#f4a80eb5

Release candidate packages aren't [re-]signed.

j

Both 1.13 and 1.14 are compatible with Puppet Server 2.7, the
documentation hasn't been updated yet.

··· On 16/12/16 01:29, Anandharaj Subramaniam wrote: > This version still does not support Puppet Server 2.7? Based on the > compatibility table, it is listed up to 2.6 only.


Dominic Cleal
dominic@cleal.org

Thank you, I've replaced the RPMs with the correctly signed versions. I
skipped a step when releasing - sorry.

··· On 14/12/16 18:48, Daniel Lobato wrote: > Looks like centos-release-scl-rh-2-2 has the wrong key? > > nodejs-css-loader and foreman (two packages I picked at random) both use > PGP#f06d8950 but rpm -K for centos-release-scl-rh gives me PGP#f4a80eb5


Dominic Cleal
dominic@cleal.org