init

2023-04-23 23:34:36 +02:00 · 2023-04-23 23:34:36 +02:00 · d2a010678c
commit d2a010678c
5 changed files with 784 additions and 0 deletions
--- a/templates/ssh_ca.sh.j2
+++ b/templates/ssh_ca.sh.j2
@ -0,0 +1,26 @@
+#!/bin/bash
+set -euo pipefail
+IFS=$'\n\t'
+
+host() {
+	PUBKEY="$2"
+	HOST="$3"
+
+	echo "$PUBKEY" > {{ ssh_ca_dir }}/"$HOST".pub
+	ssh-keygen -h -s {{ ssh_ca_dir }}/keys/host_ca -I "$HOST" -n "$HOST" {{ ssh_ca_dir }}/"$HOST".pub
+	cat {{ ssh_ca_dir }}/"$HOST"-cert.pub
+	rm {{ ssh_ca_dir }}/"$HOST"*.pub
+}
+
+user() {
+	PUBKEY="$2"
+	HOST="$3"
+	PRINCIPALS="$4"
+
+	echo "$PUBKEY" > {{ ssh_ca_dir }}/"$HOST".pub
+	ssh-keygen -s {{ ssh_ca_dir }}/keys/user_ca -I "$HOST" -n "$HOST","$PRINCIPALS" {{ ssh_ca_dir }}/"$HOST".pub
+	cat {{ ssh_ca_dir }}/"$HOST"-cert.pub
+	rm {{ ssh_ca_dir }}/"$HOST"*.pub
+}
+
+"$1" "$@"