sarex/iac
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Kochetkov S 2026-04-15 15:17:32 +03:00
parent f51befff17
commit 305e139108
1 changed files with 4 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
clusters/yc-k8s-test/infrastructure/patches/kafka.yaml
View File

@ -22,25 +22,15 @@ spec:
openssl pkcs8 -topk8 -nocrypt -in /mounted-certs/tls.key -out /tmp/tls.key.pk8 openssl pkcs8 -topk8 -nocrypt -in /mounted-certs/tls.key -out /tmp/tls.key.pk8
# Валидация: key должен читаться
openssl pkey -in /tmp/tls.key.pk8 -text -noout >/dev/null openssl pkey -in /tmp/tls.key.pk8 -text -noout >/dev/null
# Валидация: cert и key должны совпадать
openssl pkey -in /tmp/tls.key.pk8 -pubout -out /tmp/key.pub openssl pkey -in /tmp/tls.key.pk8 -pubout -out /tmp/key.pub
openssl x509 -in /mounted-certs/tls.crt -pubkey -noout > /tmp/cert.pub openssl x509 -in /mounted-certs/tls.crt -pubkey -noout > /tmp/cert.pub
diff -u /tmp/key.pub /tmp/cert.pub >/dev/null diff -u /tmp/key.pub /tmp/cert.pub >/dev/null
{ append_multiline_property "ssl.keystore.key" "/tmp/tls.key.pk8"
printf '\nssl.keystore.key=' append_multiline_property "ssl.keystore.certificate.chain" "/mounted-certs/tls.crt"
awk '{ sub(/\r$/, ""); printf "%s\\\\n", $0 }' /tmp/tls.key.pk8 append_multiline_property "ssl.truststore.certificates" "/mounted-certs/ca.crt"
printf '\n'
printf 'ssl.keystore.certificate.chain='
awk '{ sub(/\r$/, ""); printf "%s\\\\n", $0 }' /mounted-certs/tls.crt
printf '\n'
printf 'ssl.truststore.certificates='
awk '{ sub(/\r$/, ""); printf "%s\\\\n", $0 }' /mounted-certs/ca.crt
printf '\n'
} >> /config/server.properties
global: global:
imagePullSecrets: imagePullSecrets:
- regcred - regcred