tf-debian-vm/files/get_cert.sh

#!/bin/bash
set -euo pipefail
IFS=$'\n\t'

eval "$(jq -r '@sh "PUBKEY=\(.pubkey) HOST=\(.host) CAHOST=\(.cahost)"')"

# TODO: Can this be done more eye-pleasingly?
set +e
CERT=$(ssh -o ConnectTimeout=3 -o ConnectionAttempts=1 root@$CAHOST '/root/ca.sh host "'"$PUBKEY"'" "'"$HOST"'".dmz')
retval=$?
set -e

if [ retval -neq 0 ]; then
	CERT="error"
fi

jq -n --arg cert "$CERT" '{"cert":$cert}'
init 2023-04-05 14:48:38 +00:00			`#!/bin/bash`
			`set -euo pipefail`
			`IFS=$'\n\t'`

parameterize more values 2023-04-05 15:12:16 +00:00			`eval "$(jq -r '@sh "PUBKEY=\(.pubkey) HOST=\(.host) CAHOST=\(.cahost)"')"`
init 2023-04-05 14:48:38 +00:00
			`# TODO: Can this be done more eye-pleasingly?`
fix if CA server is unavailable 2023-04-09 11:41:48 +00:00			`set +e`
			`CERT=$(ssh -o ConnectTimeout=3 -o ConnectionAttempts=1 root@$CAHOST '/root/ca.sh host "'"$PUBKEY"'" "'"$HOST"'".dmz')`
			`retval=$?`
			`set -e`

			`if [ retval -neq 0 ]; then`
			`CERT="error"`
			`fi`
init 2023-04-05 14:48:38 +00:00
			`jq -n --arg cert "$CERT" '{"cert":$cert}'`