From 92a35145be27ac42b1e81e65dbc615445d12e446 Mon Sep 17 00:00:00 2001 From: Kaspars Skels Date: Thu, 5 Dec 2019 13:04:14 -0600 Subject: [PATCH] Move global secrets to site This gives users a straight forward way to update airship SSH key for deployment (MAAS/divingbell config). Change-Id: Ib67774fb67daa79e255b32e6a3e98a5bde96af4f --- .../secrets/passphrases/private_docker_key.yaml | 0 .../secrets/publickey/airship_ssh_public_key.yaml | 0 .../secrets/passphrases/private_docker_key.yaml | 14 ++++++++++++++ .../secrets/publickey/airship_ssh_public_key.yaml | 11 +++++++++++ .../secrets/passphrases/private_docker_key.yaml | 14 ++++++++++++++ .../secrets/publickey/airship_ssh_public_key.yaml | 11 +++++++++++ .../secrets/passphrases/private_docker_key.yaml | 14 ++++++++++++++ .../secrets/publickey/airship_ssh_public_key.yaml | 11 +++++++++++ 8 files changed, 75 insertions(+) rename {global => site/aiab}/secrets/passphrases/private_docker_key.yaml (100%) rename {global => site/aiab}/secrets/publickey/airship_ssh_public_key.yaml (100%) create mode 100644 site/airsloop/secrets/passphrases/private_docker_key.yaml create mode 100644 site/airsloop/secrets/publickey/airship_ssh_public_key.yaml create mode 100644 site/seaworthy-virt/secrets/passphrases/private_docker_key.yaml create mode 100644 site/seaworthy-virt/secrets/publickey/airship_ssh_public_key.yaml create mode 100644 site/seaworthy/secrets/passphrases/private_docker_key.yaml create mode 100644 site/seaworthy/secrets/publickey/airship_ssh_public_key.yaml diff --git a/global/secrets/passphrases/private_docker_key.yaml b/site/aiab/secrets/passphrases/private_docker_key.yaml similarity index 100% rename from global/secrets/passphrases/private_docker_key.yaml rename to site/aiab/secrets/passphrases/private_docker_key.yaml diff --git a/global/secrets/publickey/airship_ssh_public_key.yaml b/site/aiab/secrets/publickey/airship_ssh_public_key.yaml similarity index 100% rename from global/secrets/publickey/airship_ssh_public_key.yaml rename to site/aiab/secrets/publickey/airship_ssh_public_key.yaml diff --git a/site/airsloop/secrets/passphrases/private_docker_key.yaml b/site/airsloop/secrets/passphrases/private_docker_key.yaml new file mode 100644 index 000000000..d3a0341e1 --- /dev/null +++ b/site/airsloop/secrets/passphrases/private_docker_key.yaml @@ -0,0 +1,14 @@ +--- +schema: deckhand/Passphrase/v1 +metadata: + schema: metadata/Document/v1 + name: private_docker_key + layeringDefinition: + abstract: false + layer: global + storagePolicy: cleartext +# sample key for potential private docker registry +# see Docker documentation for info on how to generate the key +# base64 of password123 +data: cGFzc3dvcmQxMjM= +... diff --git a/site/airsloop/secrets/publickey/airship_ssh_public_key.yaml b/site/airsloop/secrets/publickey/airship_ssh_public_key.yaml new file mode 100644 index 000000000..b14a575bd --- /dev/null +++ b/site/airsloop/secrets/publickey/airship_ssh_public_key.yaml @@ -0,0 +1,11 @@ +--- +schema: deckhand/PublicKey/v1 +metadata: + schema: metadata/Document/v1 + name: airship_ssh_public_key + layeringDefinition: + abstract: false + layer: global + storagePolicy: cleartext +data: ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCyb6CDrai3VcFW1ew5ikf7IDSpqfFyrJNLI1DPyd28vcy6D1oFXdELYK7DsXzVCgV7YNDiKpneXMBTJ/Mr/aZi9K3eVvtRp1HAK3y6ycx9KRfyfMVAU0aT3xMOpE5xS/xTH8HNRbOSszp0woVYKhncpkumHweji7wbLKm/WxsggIoGDjn29KIoRhpo96tWz/DBsoU1pIHTMoZNyHW2aYWEx6kOzTEmhxL0LkKv7+A/2HJuLnqcXoQH9jl3kRQDyikNlSw2T3gQV3I8m0od/lEf98MZb1Yv9GrlDCmnUPXAJ2HQaWaVaPPpGcBW7veOZlLfeulwD4zlo6P6JW1SZaat airship@seaworthy +... diff --git a/site/seaworthy-virt/secrets/passphrases/private_docker_key.yaml b/site/seaworthy-virt/secrets/passphrases/private_docker_key.yaml new file mode 100644 index 000000000..d3a0341e1 --- /dev/null +++ b/site/seaworthy-virt/secrets/passphrases/private_docker_key.yaml @@ -0,0 +1,14 @@ +--- +schema: deckhand/Passphrase/v1 +metadata: + schema: metadata/Document/v1 + name: private_docker_key + layeringDefinition: + abstract: false + layer: global + storagePolicy: cleartext +# sample key for potential private docker registry +# see Docker documentation for info on how to generate the key +# base64 of password123 +data: cGFzc3dvcmQxMjM= +... diff --git a/site/seaworthy-virt/secrets/publickey/airship_ssh_public_key.yaml b/site/seaworthy-virt/secrets/publickey/airship_ssh_public_key.yaml new file mode 100644 index 000000000..b14a575bd --- /dev/null +++ b/site/seaworthy-virt/secrets/publickey/airship_ssh_public_key.yaml @@ -0,0 +1,11 @@ +--- +schema: deckhand/PublicKey/v1 +metadata: + schema: metadata/Document/v1 + name: airship_ssh_public_key + layeringDefinition: + abstract: false + layer: global + storagePolicy: cleartext +data: ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCyb6CDrai3VcFW1ew5ikf7IDSpqfFyrJNLI1DPyd28vcy6D1oFXdELYK7DsXzVCgV7YNDiKpneXMBTJ/Mr/aZi9K3eVvtRp1HAK3y6ycx9KRfyfMVAU0aT3xMOpE5xS/xTH8HNRbOSszp0woVYKhncpkumHweji7wbLKm/WxsggIoGDjn29KIoRhpo96tWz/DBsoU1pIHTMoZNyHW2aYWEx6kOzTEmhxL0LkKv7+A/2HJuLnqcXoQH9jl3kRQDyikNlSw2T3gQV3I8m0od/lEf98MZb1Yv9GrlDCmnUPXAJ2HQaWaVaPPpGcBW7veOZlLfeulwD4zlo6P6JW1SZaat airship@seaworthy +... diff --git a/site/seaworthy/secrets/passphrases/private_docker_key.yaml b/site/seaworthy/secrets/passphrases/private_docker_key.yaml new file mode 100644 index 000000000..d3a0341e1 --- /dev/null +++ b/site/seaworthy/secrets/passphrases/private_docker_key.yaml @@ -0,0 +1,14 @@ +--- +schema: deckhand/Passphrase/v1 +metadata: + schema: metadata/Document/v1 + name: private_docker_key + layeringDefinition: + abstract: false + layer: global + storagePolicy: cleartext +# sample key for potential private docker registry +# see Docker documentation for info on how to generate the key +# base64 of password123 +data: cGFzc3dvcmQxMjM= +... diff --git a/site/seaworthy/secrets/publickey/airship_ssh_public_key.yaml b/site/seaworthy/secrets/publickey/airship_ssh_public_key.yaml new file mode 100644 index 000000000..b14a575bd --- /dev/null +++ b/site/seaworthy/secrets/publickey/airship_ssh_public_key.yaml @@ -0,0 +1,11 @@ +--- +schema: deckhand/PublicKey/v1 +metadata: + schema: metadata/Document/v1 + name: airship_ssh_public_key + layeringDefinition: + abstract: false + layer: global + storagePolicy: cleartext +data: ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCyb6CDrai3VcFW1ew5ikf7IDSpqfFyrJNLI1DPyd28vcy6D1oFXdELYK7DsXzVCgV7YNDiKpneXMBTJ/Mr/aZi9K3eVvtRp1HAK3y6ycx9KRfyfMVAU0aT3xMOpE5xS/xTH8HNRbOSszp0woVYKhncpkumHweji7wbLKm/WxsggIoGDjn29KIoRhpo96tWz/DBsoU1pIHTMoZNyHW2aYWEx6kOzTEmhxL0LkKv7+A/2HJuLnqcXoQH9jl3kRQDyikNlSw2T3gQV3I8m0od/lEf98MZb1Yv9GrlDCmnUPXAJ2HQaWaVaPPpGcBW7veOZlLfeulwD4zlo6P6JW1SZaat airship@seaworthy +...