ADDED support for deploying an intermediate cert chain file

[smeinel]

Hi, I've added support for optionally deploying an intermediate cert chain file along with the other cert files. Hopefully you'll find it useful & worth including!

[zuazo]

Thanks again @smeinel. Seems OK. Give me a couple of days to review and test this carefully.

[zuazo]

@smeinel can you move this logic to an attribute file? I think it would be better there.

[smeinel]

Are you referring to default_chain_dir() ? I can do so if you like. I was simply aping the existing default_cert_dir() and used that as the basis for setting the correct directory. I'm still new to Chef and getting used to the coding conventions.

[zuazo]

Yes, you are right. You've applied the same logic. I'm going to merge as it is. Cookbook code enhancements are outside this PR. Thanks!

[smeinel]

Thanks! Glad I could contribute.

[zuazo]

Released in 0.3.0.

[benoahriz]

I seem to be having an issue when not specifying intermediate settings in the resource the recipe fails. When I then try it with an intermediate inside a data-bag it completes a chef-client. Any idea what I'm facing here? This is on ubuntu 14.04

My workaround is to specify the intermediate settings and just not use it after convergence.

[zuazo]

@benoahriz, seems to be a bug. Could you paste the error here?

[benoahriz]

@zuazo I'll post the debug output as soon as I have some free cycles. Thanks.

[zuazo]

@benoahriz, I think I fixed your bug in 16bb02a. The error was something like Cannot read SSL intermediary chain from data bag.

[zuazo]

@benoahriz, fix for the chain bug released in 1.0.0.

[benoahriz]

@zuazo sorry for the late reply but the error message was when not specifying a chain

 FATAL: Cannot read SSL intermediary chain from data bag: ssl.

After upgrading to the 1.1.0 version I verified that it works as expected. Thanks so much!

[zuazo]

I'm glad your error is now fixed, @benoahriz. I really appreciate your feedback. Thanks!