Bug 1207304

Summary: [RFE] Add default RHEL / Fedora scap contents to foreman_scap_client and seed in foreman_openscap
Product: Red Hat Satellite Reporter: Shlomi Zadok <szadok>
Component: OtherAssignee: Shlomi Zadok <szadok>
Status: CLOSED DUPLICATE QA Contact: Katello QA List <katello-qa-list>
Severity: high Docs Contact:
Priority: unspecified    
Version: 6.1.0CC: bbuckingham, bkearney, dcaplan, kbidarka, sloranz, slukasik
Target Milestone: UnspecifiedKeywords: FutureFeature, Triaged
Target Release: Unused   
Hardware: Unspecified   
OS: Unspecified   
URL: http://projects.theforeman.org/issues/9950
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-04-22 09:51:31 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1047797    

Description Shlomi Zadok 2015-03-30 16:08:33 UTC 
We'd like to ease the use of the default scap-security-guide xml files. 
The scenario is: 
scap-security-guide xml files are on the client host.
A user creates policies on Foreman. The policies' data is synced via puppet to the client host.
The user does not need to copy / move scap-security-guide xml files to /var/lib/openscap/content/<digest>.xml

On Client host side
# Add scap-security-guide as an RPM dependency to foreman_scap_client RPM
# Post install creates a symlink between the security guide xmls to /var/lib/openscap/content/<digest>.xml:
## Extract scap-security-guide xml digest
## symlink scap-security-guide xml to /var/lib/openscap/content/<digest>.xml

On foreman_openscap
# Add scap-security-guide as an RPM dependency to rubygem-foreman_openscap RPM
# A seed which automatically creates a Scaptimony::ScapContent with the contents of the scap-security-guide
Comment 1 Shlomi Zadok 2015-03-30 16:08:34 UTC 
Created from redmine issue http://projects.theforeman.org/issues/9950
Comment 3 Kedar Bidarkar 2015-04-15 16:08:18 UTC 
During my OSCAP demo I got to know that the data-stream.xml files can also be other than what is brought my scap-security-guide RPM, (ssg-rhel6-ds.xml or ssg-rhel7-ds.xml file).

Just wondering how will that be handled here, if the idea is to go as per the initial bug description.