chaos/docker-salt-master
Archived
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix: Change certificates ownership

Browse Source
This commit is contained in:
Carlos Álvaro
2020-11-03 20:30:36 +01:00
parent 8d2fa05825
commit a277e05c88
1 changed files with 5 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
assets/runtime/functions.sh
View File

@@ -208,8 +208,10 @@ function configure_salt_api()
echo "Configuring salt-api service ..." echo "Configuring salt-api service ..."
CERTS_PATH=/etc/pki CERTS_PATH=/etc/pki
SALT_API_KEY_FILE='docker-salt-master'
rm -rf "${CERTS_PATH}/tls/certs/*" rm -rf "${CERTS_PATH}/tls/certs/*"
salt-call --local tls.create_self_signed_cert cacert_path="${CERTS_PATH}" CN=docker-salt-master salt-call --local tls.create_self_signed_cert cacert_path="${CERTS_PATH}" CN="${SALT_API_KEY_FILE}"
chown "${SALT_USER}": "${CERTS_PATH}/tls/certs/${SALT_API_KEY_FILE}".{crt,key}
cat >> "${SALT_ROOT_DIR}/master" <<EOF cat >> "${SALT_ROOT_DIR}/master" <<EOF
@@ -221,8 +223,8 @@ api_logfile: ${SALT_LOGS_DIR}/salt/api
rest_cherrypy: rest_cherrypy:
port: 8000 port: 8000
ssl_crt: /etc/pki/tls/certs/docker-salt-master.crt ssl_crt: ${CERTS_PATH}/tls/certs/${SALT_API_KEY_FILE}.crt
ssl_key: /etc/pki/tls/certs/docker-salt-master.key ssl_key: ${CERTS_PATH}/tls/certs/${SALT_API_KEY_FILE}.key
EOF EOF
# configure supervisord to start salt-api # configure supervisord to start salt-api