diff --git a/common-prod/overlay/etc/hiera/data/group.yaml b/common-prod/overlay/etc/hiera/data/group.yaml index 17fa9de..1b750e7 100644 --- a/common-prod/overlay/etc/hiera/data/group.yaml +++ b/common-prod/overlay/etc/hiera/data/group.yaml @@ -17,6 +17,8 @@ certbot_sync_client_ips: - 2001:6b0:7d:40::3a9 # internal-dco-prod-radius-2.geteduroam.sunet.se - 89.45.236.40 # internal-sto3-prod-radius-3.geteduroam.sunet.se - 2001:6b0:40::490 # internal-sto3-prod-radius-3.geteduroam.sunet.se + - 89.45.236.40 # internal-sto3-prod-radius-3.geteduroam.sunet.se + - 2001:6b0:40::490 # internal-sto3-prod-radius-3.geteduroam.sunet.se certbot_sync_client_ssh_keys_db: 'internal-dco-prod-radius-2': @@ -24,7 +26,13 @@ certbot_sync_client_ssh_keys_db: type : 'ssh-ed25519' name : 'internal-dco-prod-radius-2' options : 'command="/usr/bin/rrsync /etc/letsencrypt/",no-agent-forwarding,no-port-forwarding,no-pty,no-user-rc,no-X11-forwarding' + 'internal-sto3-prod-radius-3': + key : 'AAAAC3NzaC1lZDI1NTE5AAAAIP+GrJ0x16grcvV/uh08f4PXxpSi9aVxC7HVPe/LgXbe' + type : 'ssh-ed25519' + name : 'internal-sto3-prod-radius-3' + options : 'command="/usr/bin/rrsync /etc/letsencrypt/",no-agent-forwarding,no-port-forwarding,no-pty,no-user-rc,no-X11-forwarding' certbot_sync_client_ssh_keys_mapping: 'root': - 'internal-dco-prod-radius-2' + - 'internal-sto3-prod-radius-3' diff --git a/internal-sto3-prod-radius-3.geteduroam.sunet.se/overlay/etc/hiera/data/local.eyaml b/internal-sto3-prod-radius-3.geteduroam.sunet.se/overlay/etc/hiera/data/local.eyaml index b780ada..73d633e 100644 --- a/internal-sto3-prod-radius-3.geteduroam.sunet.se/overlay/etc/hiera/data/local.eyaml +++ b/internal-sto3-prod-radius-3.geteduroam.sunet.se/overlay/etc/hiera/data/local.eyaml @@ -12,3 +12,32 @@ mariadb_user: geteduroam mariadb_user_password: ENC[PKCS7,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] mariadb_database: geteduroam shared_secret: ENC[PKCS7,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] + +certbot_sync_client_ssh_key: > + ENC[PKCS7,MIIEpwYJKoZIhvcNAQcDoIIEmDCCBJQCAQAxggKbMIIClwIBAD + B/MGcxCzAJBgNVBAYTAlNFMQ4wDAYDVQQKDAVTVU5FVDEOMAwGA1UECwwFRV + lBTUwxODA2BgNVBAMML2ludGVybmFsLXN0bzMtcHJvZC1yYWRpdXMtMy5nZX + RlZHVyb2FtLnN1bmV0LnNlAhQM4hAFG8GjDo37POtr2+gACZWbizANBgkqhk + iG9w0BAQEFAASCAgAt6wB0NsEGNV7Wciu1R344KJ6Iq/tV9W4CrMEt26yhLh + Z5+A+XQypCsHVJcry26dGy98dHS+T+gT3N6o3O0leH2aYv7ve3CqkgxoNN7m + GeLepI732aGYnIURIWRhLuk65WqaCM4ehAqAVuhyW702squqDMFJyBNA9H0+ + WVe0hl7BeB7tV4x3f2WXh0cVY1akzfKLRVliI0vg5H6WsIdgaGzLfSVS4ssr + c3DvdCRW2ZM7ndwMQEsY2CfJ3P1z+0jHSzeV2NBRZsTYd0ENXmYr899/Rz2t + D1ePxg3AqIUmjfiDkp7fn/pIZo1e8R4L6U/XTcHLNj73aNIereSQS4wqbGUg + WwO7i3SUn36h0KAq34sLUxcmMEnmwI2xXt3GVaQcWWv9nxOjngq9rMgq1kgi + voyjAeCV3Y4ZMiDIreRE3WdYYFdsm6sYSTM6VZhf582qJs2sSPG/H7qSvVpp + k+GjLqjc3Vi7PlK2MNUHEDRHXoTO03VXcZBVjJGS1yE//PF9QG9N5qmFLX9Z + RKYt/0yPlHarsHG7Lis+uHsp1ZklFFfClb7JkpDOc3nMJ6d17Ny6R7oUfGSe + C/Wq37orq9IHZl+FaYZD523Hqi9Hc5EjJdTaBukMpTBCF3yelxxm9a+aQFJZ + 1S2A1Y7+FePfZDh+FytxXcwsiBixeXMkuYSjpVPzCCAe4GCSqGSIb3DQEHAT + AdBglghkgBZQMEASoEEPsaBZexFlMisH7lv0UsPq+AggHASTCbJTCW9aCnbH + 15dKN+YYDUYOKwcGIQCR8YbaXqpKQOlryBbMFDhLuHf70jT6MLo0mpKym5/H + B0n1DLKaplj6ONPLbhE5YrdwYI4puOr3P3rnPLM44O7sMboVP1oDJLbsZKqY + GxII+bos6xy2ryxoWorjF4IB1JFdfzIT4PUd3vIHu6UvIp2X3+2IAGhLuBr3 + UdQvULR6bbXVfx0ASNpW9o1FUGHHmCVUi1kTZxYT0YpiaQOOJ3LptyUg+ko2 + a5p9Fy0wfAR/kM4pRM83AYX4Ty3Y+1Sm+ndOfyBzrKB610n9//ojcsTV3YgE + kJvhtVIrW1HUGUr/RYR+yccfTi2MChIOg3Mi6+UHEwZMA3+Dlh8Xwuwxh6Bh + DdOgRdP1Is1dOVYFwmWVdJjthBVBiIH6QKqL8/BZfXWHv2zA4n21nTtNnyRo + UPzls5tKmC054P5AyM1rBXJnDqI14nO0zUksFk7rdqXWuPtvw83I1yaDcLzk + YAHnhR44RSI5XRBhW7V5ANglWVKNfarN84aojj+scY1Vwv5qfsVC+awj49FF + OsZLMc9gbQQahkBIX6qNIWBsiDrYYGBbU2N06a1nHuhQ==]