From c466e325085fa7abc699168987670af3998a366c Mon Sep 17 00:00:00 2001
From: Patrik Holmqvist <pahol@sunet.se>
Date: Wed, 19 Feb 2025 10:03:13 +0100
Subject: [PATCH] Add metadata key used in QA connector, SC-2670

---
 .../overlay/etc/hiera/data/local.eyaml        | 121 ++++++++++++++++++
 .../puppet/modules/eid/manifests/connector.pp |   7 +
 2 files changed, 128 insertions(+)
 create mode 100644 connector-qa-sto1-1.komreg.net/overlay/etc/hiera/data/local.eyaml

diff --git a/connector-qa-sto1-1.komreg.net/overlay/etc/hiera/data/local.eyaml b/connector-qa-sto1-1.komreg.net/overlay/etc/hiera/data/local.eyaml
new file mode 100644
index 00000000..97ad6b04
--- /dev/null
+++ b/connector-qa-sto1-1.komreg.net/overlay/etc/hiera/data/local.eyaml
@@ -0,0 +1,121 @@
+---
+
+eidas_metadata_key: >
+ENC[PKCS7,MIIUZgYJKoZIhvcNAQcDoIIUVzCCFFMCAQAxggKKMIIChgIBAD
+BuMFYxCzAJBgNVBAYTAlNFMQ4wDAYDVQQKDAVTVU5FVDEOMAwGA1UECwwFRV
+lBTUwxJzAlBgNVBAMMHmNvbm5lY3Rvci1xYS1zdG8xLTEua29tcmVnLm5ldA
+IUB3/P/2bKTKX2n6zgyITK19GrzcowDQYJKoZIhvcNAQEBBQAEggIAmnA1a+
+NE31AuK75gDJP/95JoO8BpAl/KDAlv/5ZiiCzRaH8F/b8p8SBJkw6r4HiDc+
+xcI83ZDl0LXt8p35iFbWLoz378yu0dXa6zLdCzPTr6/XWw9AO6oUEPPe/yJv
+PfjNC33x4d+Do1LBHmGHoPKczdi7kl8A44KyGjrcErFBdD4HUsbsuz9CDtGC
+c03UkQP1w/7LpNf1hSw1Q9X0LpF/KraRp3VKjG15f3utiCo3n3IpdHQhOb9Y
+cvyEVokr8ekEHHqzbz7tgqU1XhoWGHsgf1v7orzTDrkQMah0N0ncW5/b4tTI
+MA19HkIe1QPpxNpCDohnJ9fLnQ/FkkAYHUSR2cTmHztF7b9loCii7PRrDm5J
+8Q46yAsW/n24KLr7Ezq3g0OGdkVSKJAVdhSl4AAQWQkSxMW6A1707GGR4MqJ
+vOoN1DOy2x0YusxjO6V4C72vllsWTdfHafbiZnaeFbYXF7DHc1Asy7UTyen0
+YbM0WRtYt/JKWvIl5pIhJdrr/TRp6Ex8YFKl8Sg4NxBu3a6SwK3fzQ/14OiK
+lH/+x71Igv4hwRUzdlmsF9X7Wc30Qq5eARgEZsh5WIFGd9zppGGNKtglOwEu
+RUI1GCqbbLXbZbzcgEpq2SeCtM1G4HXjUTW5Z/0Hcy40UeGhjDGDcE/lYaoy
+gU3+3xGaLqfgvoFbswghG+BgkqhkiG9w0BBwEwHQYJYIZIAWUDBAEqBBCgbE
+9NCzU8dDcFo0WKUYhpgIIRkEvuFzeGVQ6szZLlatUT+sWNkHrg51GkF8ansY
+rB8gix+gh7Ok+ozYT4bO5pvrSks+d8y9BN9+lY4ogRzUUGbEOGfgin9LCk/x
+W/hKCNSEXCwFXpbC6OPEOP5GIU/3HMz7D2epzfX9acNYnZRgKU2IDU113jDO
+tAHBlrr1QzOB4klruTowEFZX9qn0F5Q/NrbYDKBTpkW6YB3VXGQ8nWj7oht5
+T/8GWqV8B4xk1VieW5XVy/pnArTh9Nno05uWSeqthZRvM6yAVgTZyzOnenEs
+TpAf5gZllrp8FxcnmEovHAiOdlU+kw+1lHn5SUWsglW6rJ9y/dEspp7Wp2pJ
+dZ1AfS1SvPT0ZYcxld5gDl6k1JsnZ3ifYEAdkd6390DKcLaUDKGFbFGnpN5D
+7UAeXqFNqQuGQ7KiFQVKjLwjSSvSlhXqO/NG4N8EmyuQVM4P+Ak3CgWsLKSi
+VgerxBX237K89Em+NSY4Gd514cRmejI1Jj0UEJtDs73NYTGZNX9+8ANsfkOy
+QQdfIb6FA29Og0aSqrW6wFtBOfPRvF7Su8rhtAAWj8kwd8V/2D8NlZkct84z
+3TKylrwrMw5jwUpPq2/LBvO8Fzy8l8yqhhaLHWrNFrrFX80bhJq+Lbe53GrF
+Y8zaYQtkAk+oTu8fTzgxtjUjxc2rM2CIoFmXSAM+dN0YCex2nDfzuSeF/1Nq
+8enC7r7ceaOtHru2Bb1Qj4CGSHHbUjuCXA+UceIzoRol66cuZg3QUVTvgi96
+FuVXvmuBEnW7Z5fIyaQxuvGf0+J4ZPATbRr640cypmBkoUgmlb9GeAzMphnc
+OOhJHtvgJVkmFcVs2PeAjBomGX+xjiZdFMkN9PM8ejWTrz+ssfVEJnIpFkOm
+hWjd2rwiJwHxW8KS3wVZjCTZ84SZPJg6hJWxA4qgf4OdpbdfFdmYbyrYzXlX
+c88LcW70C0egB3DugSN/Hvbl2De69DUaHxC5cPyNLpvYtZt49/Q5xkprdbxe
+K7uMwxq+LiSDjTsMVxa7jl7it72RiQJxdx8AZx1QxJoU0iX28yulkT7XqHeL
+3I+v76DDZl+qduzGPZEkyDLa7YQViTZHy7kcAPRb85zZqby3rBQfM0LxDG8O
+XzxdQJ1OzT00nzqCK0KZse4uhfpvIDTefNHUViPS099+IBBf4H1wVrzmkKmV
+t33+nKK+jl+RG767stHcLFIjStEu2xToOzj+gynpoZRulUUev3IrZHPRl6Ex
+CLIMQRYo2g2eSlyp1hbJzedp8VAJTvv0Mxs+TBJojdSHlwgJ1dNXi/KzyCrR
+Kq69/8+mFo0q8ctNo9IPfdopqrZgaV+1drbfWzbrpaGf6Y3sKlsJnXtqTN/w
+ZDEDOgoeEOYeIIYrlCwYnWM2negQJcO+Ngxb9qIpEyXnusn10LSRUUwvMib/
+H2UelYBQocTkRPWNjbDLBHh4h42hsQe+Z+u09xdeR9ye5oF9MXX8d7PnW37d
+8bjtAhUfK0cAXajUMrYIYCwMP/PPoNVPn5/qcSD3znnJwNjKsqwUkAIvUojC
+APkEHU5Fb4u3JGmiTAdTqx1P91SW1cDa8PPnyP61fYetRiVL13a1DtfXq8OU
+yacKKF2gg5fWkFHzbquVLsaUsThtKmkoKppQ1MypPvNAsH+GpJvCGgXo85wF
+AFqJx3MqRGir4KQ9AWrAbjUKBPisxiiWgprGGrosol2RlTcM78CL9+lujct3
+jWyZuOhaXC0+VovgQtxPLOoG0jsRgZnIffR1g8+5EAuEcxbdo1FQZZQfxLD3
+cGgp3DyDEl4IQMJfcayRg5+OMDYzxloHBo/Yoe2WJEt/b4su4kXKUqK8rdZa
+6Yc2unpR92CtgN/n39JYmAWHVdFQeilBaCZwlubRUm0+1nJeuwVwWwBRQsq7
+jttpytEfs+YMkUhNx+Mr/q+foOwCR+PiDCd8rhWcmWzzH7jGD8SsGSZw4JgS
+IrCFaF6EhbVnCdt7vCUsI0NuSh6NEDE1/OrerM+5sy/3ACN0iunRqX507IlF
+8FA/oWb2nlpiCxcXY3J+KJcivbx1M6ckE/oajx8VBYK5VyQ/tRKp5jHlcZ9d
+3PAZFjx8WkiE8Bnsk8iwGulr2PLXlxI2N4GmAwK73/2rQfKeQM3SKz4gm3g6
+ZY8kSqww3e2UQr677EIgPO6IrsYh7b3BhA84rSzRPInD1BUO+rJxZH63m6Rz
+pcx3O7Hy46DxpaIF6G+Pc0E4zsMdlhpAkrCIVnmk+DfOpxxOIu+we32imiJI
+/2yhGioxeHHrlUyqcwe6GlUCw8o5DntAfsClf+XHfmA8z3BcSnZ0pFBCvdur
+yjT/SGgnWaJYtdrg6sAQWddOze4qpJ5IU/CdiXrkXwELecXh8CWxtIDb5qrp
+T0gPnXGd7RTL10+RCs5CRaOEIS1n3x585bhL03Qgfshmr812nt7co7TNrurz
+t9tx3MEe3cjG+excFL0xa8OAx7zqzwxNLP191PdNHfIjH6tkVtL9O6wjpUWV
+mJT6E9H6yz/TxQWzs2fzH1XSdR9S0bjKDAFJTb8PUpkhrYhqecPdcXb8TsBQ
+30s4dyWcvdukuazPFaOGyOYy8Z7Em3GG6040GmxepIW8Gl5qDuimClwa2g1l
+taayoS0Rdo82A1ir8N4NGbEzPPCfGxe4jySQqdQBgYSnVprX1MeiZlc+XpoG
+LEGEIg3CBRuEzwxQyAnKJP54/0picfmp5RbvGdng6gDgztVG0bdB7XpPfsWs
+2jrCUPYhkiwjbNWz0bTZYE6IVTT2JAxT98KMAT4z8T8dkMcZq37aD247U9Eu
+WV4WffKcBzoQB4AE8vc+JuiUtwtr5Fu1jT1U05R4dvg6PZ58NCqz9LSnjNWr
+ZkQnurUdwtAkG2w9OG0RtHavJAHVZb1TBTvBfQf/69S/VnT/4Ha+eqEWS0aZ
+tUV1PlaM9ooeAz80kFsDdWVZOHGYu2luvAnl5xbG5WeWFN0G2Ep9rFH0arm7
+zG1BYLB7jpQes8nofqeZtOdYDG1l5+PuLLlDL4PN7YphzS2KP5G9NFuzt671
+/blc58UDT7PDgdOX/zWxcxGz2F8IBDPPQe4eJfvh6VO1dUKIq4ZbuOMiEmBS
+yEbJt6fyVsqk1Jc5g0MIwBNnf3nx7QbS/SAgZvy3FbZiQQy5A2gTotW7fUzZ
+XDLQ03BER8eGsZ01ztBSLa/5TaqgthmiPfUsGkx2L1EBypD3QqhIPKsGqNZi
+rWhjgtJoOylEnprHUy/K+FCCNeo3PFK79jNQPrhkbLNRj8+v0aWZk5lnEc/0
+VLgYUG4RuigbNSBQZA2rrQ8Pc4Ak93r+EfKBksHnktwpQ3Ssh6cKhtMdx6uO
+Uazi7W4OVo9+WHSvtn+sL8iRLS6qSZE6ZYlNgol5Rj4WUehVN49AG++e9sLS
+Jikc4oBm1rmjiy4UHtr1QdK8JE1DPYPpmqA/1I7ULHma5jq/OJ6i4uN0VT/B
+DMClfoAw8pY0goFMHSbEIveGfSwkI3IbOLTtWGC4WQ1Oblfi8zUmcF9ElA6q
+0vL0g1Z2Xb20ylA+GPMbE5nhcweJlXagmEG59iWEkl4N7xUAyfsrsWdbRSDK
+Jmqq52LH4vwr+DN/4JiFoRDfh5UbY+PvBeek2flGLebC9mgAS8II3RlFsx0K
+gAj4/exc3gpq/bTd0OZXQsueYo07P4s2d363/jd/0owL/8rBmtSqODip2Gq9
+62vD1nKxq7gU8gefq9rQhFAq0x8DFegEqS72bk39qIMzJSPnrNyUktld9jZ6
+6pijNuQ+LJm4kR821OG6ZqCyNHqsslRHgMhDLo1/f4CaYTFmMEWdMLWHJysr
+WdhatDJeGTjivpLfrHn5mRZWjwR8TcM8jsbQJz0i34BuS/XKrrSc/hkdYKFw
+q9Kt2YAKF8DGT3U5k+xUio/aAc/gMcJM4nUXEwXKB72sQKf39B7j/JOkGySx
+EnAmka52WjSOHGPO0iDmZT2HqvyIHJHqJb47CzUB62A2Q97ukFjKOODGq8in
+EXTlIrm/rZAEVlJ3elYPO19Qf9lyXFqwPRg/lj7Er3Yeb/B8CBXV9aKIToct
+4sT73jeCDrOuuJwLWmVg3DvqlrM0xKzLuZk0dkV7Dpj7lxggGQekANECjUY2
+Dn4FLiGrhMve+NeowHz9JcDrqZirBKj4vFYcGzk6UysrYvbge0x97PZu7cuD
+qzd5qzaW1bphsGcaGai4/rJIEsjgJPK/vs5RIG3/+5G6B/FFr67MDEE/XuzM
+7OFd1Xee2SyxQV4D7XymYBgKbQAQX1swK7sn0wrtcBGpAmL7yLg/k35be/Pq
+ueevi8C1hMC38EANUInayGBuSenu6j0wom2E2p2gDAGf2pOAm8shi+lp6rur
++FOxSPbXx7M5y6gSWkwIinPv22Gcc9dkMH08CmgaQcSSXwed5N9GvYrsPsbP
+620nkXiMvCDVihAbcF0QlWFJUfpzCicaoYRgpD1Glt3f3ToJ6cTIGkREo3M6
+T7CagvO6B+HJ7lT1dNR72dukgCffbrDFKaz7llzyib8IJ8Ig0qWJamCaGPk4
+PuRqBuMIdVKwKrbD6IO4eUYgkVRLfqHZPMdlnRjw2USkMu/DI4PuAI9H3wsf
+CcwFSqPIhmVl8SJ06bA8W6JYcuZuTJlR1FF3G3tbO0+Wjj+u5tDb79PV/bbp
++vL2heD3ehjv9S3LuZQLYflUOMgTyHhEx6MtPBLTnzWycm5uxB1g9oV2GkU3
+qzidCRhq5hTQy/YNdNhNKe39Yd/XlcRixqK/MgKCFY48EqVnvL+dgT5SSHJH
+k5cXDoezTQYGE5s0z7ORDxxZXgKVzJI5LQVsYamWqfJ9hgHD2zsMymhOHz92
+OmvHxcPbmwj4DxeNDAJFOhJLKhoUs52OZE+pwlmUmuaCvk2NrkwVh4ZMSLFq
+NGcNSPfNt5gNq82OjOyulB1QOHgSsUo6n7O8R15R7z/VM/Q7p6GbPF66Med4
+7zJp4sejSYRBOLmUWQOjr2iKUMWqKNMXYPds3BZaWcoz5/4cunNrnNg+/xaO
+DWdmN4L2LlJeGacmqfAh6DbreKSEOe8BWi6Pra7b3jzfOYKhBHHVQoDFCiAV
+1oVkHObQSZK/CctKsCRS2xi63SXNdLoqHdiMAVGQn8TDKSUcykHv4BR/oZRH
+0qi+xXVTdS5WkgWklyDOYMX75YFhx0WuFahwId93kl+Khcs2mb7ga4hkUhFc
+Sbt3BekMMz9GCbN2lG72iH8pZZ6KEPJ3mNn57BhUCYC4WxnY9NyrM50qgVAI
+Dy1eU3ORzIdWWS2xVcbCvyCXIPmF+t02U1cD85w2SKogQgA8dBoIvwO85n36
+TvbN/5MuF90tt6N8sPEjYEGLStk6X2aF/yP84LF35KBCnTG9qmPceaAlZeoP
+746AOu/Ey3b6OygqdxSrnrrMoJ9LG1z/Vanh/9ZIzoQ/mD1s0u6BbRGjeaUh
+oUCG8ZjldmKqIbQgxgBCiJ3ty4IsokKfdAc6hoMiT0p9mAl3ZLu6/wW9x4tk
+nI5qgiGRl5n3ILg8OdXygOFeiNg/yxkXsab/Fc6OS2U65UT6yIgMEvGuwVDc
+jYPG1Vbv41e4Z6azZce6Xbybhn2d7DCEEFzIpb4Df2DKw6gYh2z7jF0QTInj
+6HdcCQGgiu/c5N+/lOB1jV/5tNL/DPAzncWUFrBpYII//Lj4rH2qA60dcX7k
+Tb6zofUbutPCUSHZe7udtWSVkqwMvPiKoyXr2WvJGjj9Pgpnp0UXGNWMQ4y/
+EWYN5lPT/8D933zBcMs9tDxSb49QsOWGeI6VUwxqEmP8jimGydI6JfPQ/m8d
+yS7+npP8PvaOR4eYrtHfoGYRXWV1O37fBLONs+9Q+LX/M8UK6/VhJKc4aJ8V
+vhueaSfRgRIPZd3cTv4CKIzKKJ13BTvyHri9rJ+9YWoStq0+ebt2h+e4YeDo
+DwmRjpPRPgumO4SupHnwrhIA+iGEuIRkyA3DRAWjzRQY/Tx2D9QekliiesQ6
+QEev0UzZTSpCW5E/4f]
+
diff --git a/global/overlay/etc/puppet/modules/eid/manifests/connector.pp b/global/overlay/etc/puppet/modules/eid/manifests/connector.pp
index e908f598..a211f258 100644
--- a/global/overlay/etc/puppet/modules/eid/manifests/connector.pp
+++ b/global/overlay/etc/puppet/modules/eid/manifests/connector.pp
@@ -41,6 +41,13 @@ class eid::connector (
       content => template("eid/connector/application-${environment}.yml.erb")
     }
 
+    if ($environment == QA) {
+      sunet::snippets::secret_file {"${connector_directory}/credentials/metadata.key":
+        hiera_key => 'eidas_metadata_key',
+        base64    => true
+      }
+    }
+
     sunet::docker_compose { 'eidas-connector':
       content          => template('eid/connector/docker-compose.yml.erb'),
       service_name     => 'eidas-connector',