From a718ef0d9ec77af7b50c3a825abc591b85cd08f1 Mon Sep 17 00:00:00 2001
From: Johan Wassberg <jocar@sunet.se>
Date: Mon, 26 Feb 2024 14:04:31 +0100
Subject: [PATCH] Create p12

---
 global/overlay/etc/puppet/modules/eid/manifests/idm_app.pp | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/global/overlay/etc/puppet/modules/eid/manifests/idm_app.pp b/global/overlay/etc/puppet/modules/eid/manifests/idm_app.pp
index e00fe412..e24c7e7d 100644
--- a/global/overlay/etc/puppet/modules/eid/manifests/idm_app.pp
+++ b/global/overlay/etc/puppet/modules/eid/manifests/idm_app.pp
@@ -9,6 +9,13 @@ class eid::idm_app (
     mode    => '0755',
   }
 
+  # Unwanted password - but hey Java!
+  $pass = 'qwerty123'
+  exec { "${facts['networking']['fqdn']}_infra.p12":
+    command => "openssl pkcs12 -export -in /etc/ssl/certs/${facts['networking']['fqdn']}_infra.crt -inkey /etc/ssl/private/${facts['networking']['fqdn']}_infra.pem -name 'infra' -out /etc/ssl/private/${facts['networking']['fqdn']}_infra.p12 -passout pass:${pass}",
+    onlyif  => "test ! -f /etc/ssl/private/${facts['networking']['fqdn']}_infra.p12"
+  }
+
   sunet::docker_compose { 'idm_app':
     content          => template('eid/idm/docker-compose.yml.erb'),
     service_name     => 'idm_app',