From 2db318bdffa94f8bb23663384bb944b8d5455067 Mon Sep 17 00:00:00 2001 From: badra001 Date: Mon, 21 Nov 2022 09:15:04 -0500 Subject: [PATCH] update tf-run.data in common-services --- .../full-cluster/common-services/tf-run.data | 16 +++++++++++----- 1 file changed, 11 insertions(+), 5 deletions(-) diff --git a/examples/full-cluster/common-services/tf-run.data b/examples/full-cluster/common-services/tf-run.data index 151539a..c30c7b3 100644 --- a/examples/full-cluster/common-services/tf-run.data +++ b/examples/full-cluster/common-services/tf-run.data @@ -1,4 +1,4 @@ -VERSION 1.1.4 +VERSION 1.1.5 REMOTE-STATE COMMAND tf-directory-setup.py -l none -f COMMAND setup-new-directory.sh @@ -6,16 +6,22 @@ COMMAND tf-init -upgrade COMMAND ln -sf ../settings.auto.tfvars COMMAND ln -sf ../variables.vpc.auto.tfvars . COMMAND ln -sf ../variables.vpc.tf + module.cert COMMAND tf-directory-setup.py -l s3 +COMMENT Adding key to git-secret, hiding, and adding to git. Manually commit afterwards. +COMMAND git-secret add certs/*.key +COMMAND git-secret hide -m +COMMAND git add certs/*.key.secret +COMMENT execute: git commit -m add-pki-key -a + COMMENT submit certs/*csr using command ouptut listed in apply to TCO for signing -STOP once that is available, change cert_download to true +COMMAND Once that is available, change cert_download to true. If you have received a certificate manually, from the new MS CA, do NOT change cert_download +STOP Wait for certificate to be signed, then continue with %%NEXT%%. +TAG have-certificate module.cert module.cert ALL ALL - -COMMENT run: git-secret add certs/*.key; git-secret hide -COMMENT be sure to add all files to git, and be sure to commit -a to get .gitsecret/ changes