mirror of
https://github.com/xcat2/confluent.git
synced 2025-02-17 11:09:28 +00:00
32 lines
1.5 KiB
Bash
32 lines
1.5 KiB
Bash
#!/bin/sh
|
|
|
|
# This script runs before the installer executes, and sets up ssh during install as well
|
|
# as rewriting the autoyast file with any substitutions prior to it being evaluated for real
|
|
|
|
nodename=$(grep ^NODENAME /tmp/confluent.info|awk '{print $2}')
|
|
rootpw=$(grep rootpassword: /tmp/confluent.deploycfg|sed -e 's/^rootpassword: //')
|
|
if [ "$rootpw" = "null" ]; then
|
|
rootpw="!"
|
|
fi
|
|
cryptboot=$(grep encryptboot: /tmp/confluent.deploycfg|sed -e 's/^encryptboot: //')
|
|
if [ "$cryptboot" != "" ] && [ "$cryptboot" != "none" ] && [ "$cryptboot" != "null" ]; then
|
|
echo "Encrypted boot requested, but not implemented for this OS" > /dev/console
|
|
if [ -f '/tmp/autoconsdev' ]; then echo "Encryptod boot requested, but not implemented for this OS" >> $(cat /tmp/autoconsdev)
|
|
while :; do sleep 86400; done
|
|
fi
|
|
|
|
mkdir ~/.ssh
|
|
cat /ssh/*.rootpubkey > ~/.ssh/authorized_keys
|
|
ssh-keygen -A
|
|
for i in /etc/ssh/ssh_host*key.pub; do
|
|
certname=${i/.pub/-cert.pub}
|
|
curl -f -X POST -H "CONFLUENT_NODENAME: $nodename" -H "CONFLUENT_APIKEY: $(cat /tmp/confluent.apikey)" -d @$i https://$mgr/confluent-api/self/sshcert > $certname
|
|
echo HostKey ${i%.pub} >> /etc/ssh/sshd_config
|
|
echo HostCertificate $certname >> /etc/ssh/sshd_config
|
|
done
|
|
/usr/sbin/sshd
|
|
curl -f https://$mgr/confluent-public/os/$profile/scripts/functions > /tmp/functions
|
|
. /tmp/functions
|
|
run_remote_python getinstalldisk
|
|
sed -e s!%%INSTDISK%%!/dev/$(cat /tmp/installdisk)! -e s!%%NODENAME%%!$nodename! -e "s?%%ROOTPASSWORD%%?${rootpw}?" /tmp/profile/autoinst.xml > /tmp/profile/modified.xml
|