|
|
@ -159,10 +159,6 @@ EOF |
|
|
|
|
|
|
|
step certificate create "*.kaz.sns" /root/tls/wildcard.crt /root/tls/wildcard.key --profile leaf --ca /root/.step/certs/intermediate_ca.crt --ca-key /root/.step/secrets/intermediate_ca_key --ca-password-file /root/ca-passwordfile --bundle --force --no-password --insecure |
|
|
|
|
|
|
|
mkdir -p /etc/letsencrypt/live/kaz.sns/ |
|
|
|
ln -sf /root/tls/wildcard.crt /etc/letsencrypt/live/kaz.sns/fullchain.pem |
|
|
|
ln -sf /root/tls/wildcard.key /etc/letsencrypt/live/kaz.sns/privkey.pem |
|
|
|
|
|
|
|
# Cache docker registry |
|
|
|
echo "proxy: |
|
|
|
remoteurl: https://registry-1.docker.io |
|
|
@ -196,8 +192,8 @@ auth: |
|
|
|
cp -ar ${VAGRANT_SRC_DIR}/snster-kaz /root |
|
|
|
|
|
|
|
# crypto keys |
|
|
|
cp -ar /root/tls /etc/letsencrypt /root/snster-kaz/hoster-a/kaz1/ |
|
|
|
cp -ar /root/tls /etc/letsencrypt /root/snster-kaz/hoster-b/kaz2/ |
|
|
|
cp -ar /root/tls /root/snster-kaz/hoster-a/kaz1/ |
|
|
|
cp -ar /root/tls /root/snster-kaz/hoster-b/kaz2/ |
|
|
|
cp -ar /root/tls /root/snster-kaz/isp-a/home/ |
|
|
|
cp -ar /root/tls /root/snster-kaz/mica/infra/ |
|
|
|
|
|
|
|