workflow-cli/router/image/templates/generate-certs at ebcc41003d760e96c42d0c47fa3d0c2d4a478d02 · drycc/workflow-cli · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
#!/usr/bin/env bash

# create or truncate the file
> /etc/ssl/deis_certs

{{ range $cert := .deis_certs }}
echo {{ $cert.Key }} >> /etc/ssl/deis_certs
{{ end }}

CERT_PATH=/etc/ssl/deis/certs
KEY_PATH=/etc/ssl/deis/keys

# clean up all certs
rm -rf $CERT_PATH
rm -rf $KEY_PATH

# ...then re-create the paths
mkdir -p $CERT_PATH
mkdir -p $KEY_PATH

while read etcd_path; do
    ETCD_SLUG=".$(echo $etcd_path | sed s/\\/// | sed s/\\//_/g)"
    ETCD_CERT_SLUG="${ETCD_SLUG}_cert"
    ETCD_KEY_SLUG="${ETCD_SLUG}_key"

    # cert template
    {{ range $cert := .deis_certs }}{{ if $cert.Nodes }}
    {{ range $certFields := $cert.Nodes }}
    {{ if eq (Base $certFields.Key) "cert" }}
    if [[ "$(basename $etcd_path)" == "{{ Base $cert.Key }}" ]]; then
    cat << EOF > "$CERT_PATH/$(basename $etcd_path).cert"
{{ $certFields.Value }}
EOF
    fi
    {{ else if eq (Base $certFields.Key) "key" }}
    if [[ "$(basename $etcd_path)" == "{{ Base $cert.Key }}" ]]; then
    cat << EOF > "$KEY_PATH/$(basename $etcd_path).key"
{{ $certFields.Value }}
EOF
    fi
    {{ end }}
    {{ end }}
    {{ end }}{{ end }}
done < /etc/ssl/deis_certs