Refactor secrets
This commit is contained in:
parent
9c9c776213
commit
d056b385d7
|
@ -7,18 +7,17 @@ cmd mkdir -p /var/lib/nomad/pki /var/lib/consul/pki
|
|||
|
||||
for file in consul-ca.crt consul$YEAR.crt consul$YEAR.key consul$YEAR-client.crt consul$YEAR-client.key; do
|
||||
if [ -f "$PKI/$file" ]; then
|
||||
copy $PKI/$file /var/lib/consul/pki/$file
|
||||
copy_secret $PKI/$file /var/lib/consul/pki/$file
|
||||
cmd chown consul:root /var/lib/consul/pki/$file
|
||||
cmd chmod 0400 /var/lib/consul/pki/$file
|
||||
fi
|
||||
done
|
||||
|
||||
cmd systemctl restart consul
|
||||
cmd sleep 10
|
||||
|
||||
for file in nomad-ca.crt nomad$YEAR.crt nomad$YER.key; do
|
||||
for file in nomad-ca.crt nomad$YEAR.crt nomad$YEAR.key; do
|
||||
if [ -f "$PKI/$file" ]; then
|
||||
copy $PKI/$file /var/lib/nomad/pki/$file
|
||||
copy_secret $PKI/$file /var/lib/nomad/pki/$file
|
||||
fi
|
||||
done
|
||||
|
||||
|
|
Loading…
Reference in a new issue