cpe-deployments/scripts/arif-scripts/update_landscape_certs_self.sh

#!/bin/bash

# This is when landscape-haproxy the cert is SELFSIGNED. This will ensure that landscape will work
juju run --application landscape-haproxy 'sudo openssl x509 -in /var/lib/haproxy/default.pem' > landscape_cert.crt
landscape_crt=$(base64 < landscape_cert.crt)

# And yes, this needs to use the IP address, otherwise the the registration will fail
landscape_ip=$(juju run --application landscape-haproxy 'unit-get private-address')

juju_status=$(mktemp)

juju status --format json > "${juju_status}"

clients=$(jq -r ".applications | to_entries[] | select(.value[\"charm-name\"] == \"landscape-client\") | .key" "${juju_status}")

for client in ${clients} ; do
  juju config ${client} --reset ssl-public-key,url,ping-url

  juju config ${client} ssl-public-key="base64:${landscape_crt}" \
      url="https://landscape.example.com/message-system" \
      ping-url="http://landscape.example.com/ping"

  juju run -a ${client} 'sudo systemctl restart landscape-client.service'
done

# for the infra model
models="infra controller"
client="landscape-client"

for model in ${models}
do
  juju config -m ${model} ${client} --reset ssl-public-key,url,ping-url

  juju config -m ${model} ${client} ssl-public-key="base64:${landscape_crt}" \
      url="https://landscape.example.com/message-system" \
      ping-url="http://landscape.example.com/ping"

  juju run -m ${model} -a ${client} 'sudo systemctl restart landscape-client.service'
done
Initial commit 2021-10-29 09:57:19 +01:00			`#!/bin/bash`

			`# This is when landscape-haproxy the cert is SELFSIGNED. This will ensure that landscape will work`
Add controller model LMA + extras * Test initial LMA stuff for controller model * Add a script to add tags in Landscape based on juju AZs * Sync certs and update landscape-client config on all units 2022-03-17 19:09:11 +00:00			`juju run --application landscape-haproxy 'sudo openssl x509 -in /var/lib/haproxy/default.pem' > landscape_cert.crt`
			`landscape_crt=$(base64 < landscape_cert.crt)`
Initial commit 2021-10-29 09:57:19 +01:00
			`# And yes, this needs to use the IP address, otherwise the the registration will fail`
			`landscape_ip=$(juju run --application landscape-haproxy 'unit-get private-address')`

Some quick updates * Updating to use -a instead of --application * use -r for jq, and not use sed 2022-03-14 12:04:57 +00:00			`juju_status=$(mktemp)`
Initial commit 2021-10-29 09:57:19 +01:00
Some quick updates * Updating to use -a instead of --application * use -r for jq, and not use sed 2022-03-14 12:04:57 +00:00			`juju status --format json > "${juju_status}"`

			`clients=$(jq -r ".applications \| to_entries[] \| select(.value[\"charm-name\"] == \"landscape-client\") \| .key" "${juju_status}")`

			`for client in ${clients} ; do`
			`juju config ${client} --reset ssl-public-key,url,ping-url`

			`juju config ${client} ssl-public-key="base64:${landscape_crt}" \`
Add multiple files and update many configs * Add extra text vlan info bucketsconfig.yaml and networks.yaml * Use ubuntu charm for juju controller, and rename it * Remove prometheus-ceph-exporter, as this is not longer working in ussuri * Add ceph-mon to prometheus relation for ceph metrics * use ceph-osd instead of nova-compute for telegraf * Update lxd-snap-channel to 5.0/stable * Add SSL details to juju_deploy_focal script * Update certs * Add default password for grafana * Generalise tag creation in Landscape based on juju * Usef FQDN for landscape urls 2022-07-12 21:12:31 +01:00			`url="https://landscape.example.com/message-system" \`
			`ping-url="http://landscape.example.com/ping"`
Some quick updates * Updating to use -a instead of --application * use -r for jq, and not use sed 2022-03-14 12:04:57 +00:00
			`juju run -a ${client} 'sudo systemctl restart landscape-client.service'`
			`done`
Add controller model LMA + extras * Test initial LMA stuff for controller model * Add a script to add tags in Landscape based on juju AZs * Sync certs and update landscape-client config on all units 2022-03-17 19:09:11 +00:00
			`# for the infra model`
			`models="infra controller"`
			`client="landscape-client"`

			`for model in ${models}`
			`do`
			`juju config -m ${model} ${client} --reset ssl-public-key,url,ping-url`

			`juju config -m ${model} ${client} ssl-public-key="base64:${landscape_crt}" \`
Add multiple files and update many configs * Add extra text vlan info bucketsconfig.yaml and networks.yaml * Use ubuntu charm for juju controller, and rename it * Remove prometheus-ceph-exporter, as this is not longer working in ussuri * Add ceph-mon to prometheus relation for ceph metrics * use ceph-osd instead of nova-compute for telegraf * Update lxd-snap-channel to 5.0/stable * Add SSL details to juju_deploy_focal script * Update certs * Add default password for grafana * Generalise tag creation in Landscape based on juju * Usef FQDN for landscape urls 2022-07-12 21:12:31 +01:00			`url="https://landscape.example.com/message-system" \`
			`ping-url="http://landscape.example.com/ping"`
Add controller model LMA + extras * Test initial LMA stuff for controller model * Add a script to add tags in Landscape based on juju AZs * Sync certs and update landscape-client config on all units 2022-03-17 19:09:11 +00:00
			`juju run -m ${model} -a ${client} 'sudo systemctl restart landscape-client.service'`
			`done`