Mercurial > index.cgi > dotfiles

comparison .bash_aliases @ 193:5d0e1adee7e0

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Modifying cert alias for different key
author Steve Huston <huston@astro.princeton.edu>
date Mon, 21 Sep 2020 15:25:58 -0400
parents 2dc3fbf65094
children bb1c927125a5
comparison
equal deleted inserted replaced
192:2dc3fbf65094 193:5d0e1adee7e0
73 alias x='ssh xanadu.astro.princeton.edu' 73 alias x='ssh xanadu.astro.princeton.edu'
74 74
75 # SSH key signing with Vault for administration 75 # SSH key signing with Vault for administration
76 cert() { 76 cert() {
77 export VAULT_ADDR='https://ajax.rc.princeton.edu:8200' 77 export VAULT_ADDR='https://ajax.rc.princeton.edu:8200'
78 ssh-add -d $HOME/.ssh/picscie.pvt-cert.pub > /dev/null 2>&1 78 ssh-add -d $HOME/.ssh/rc_vault_key-cert.pub > /dev/null 2>&1
79 if vault login -method=radius username=vi-srh; then 79 if vault login -method=radius username=vi-srh; then
80 vault write -field=signed_key ssh-client-signer/sign/root public_key=@$HOME/.ssh/picscie.pub > $HOME/.ssh/picscie.pvt-cert.pub 80 vault write -field=signed_key ssh-client-signer/sign/root public_key=@$HOME/.ssh/rc_vault_key.pub > $HOME/.ssh/rc_vault_key-cert.pub
81 ssh-add $HOME/.ssh/picscie.pvt 81 ssh-add $HOME/.ssh/rc_vault_key
82 else 82 else
83 echo Failed to login to vault, aborting 83 echo Failed to login to vault, aborting
84 fi 84 fi
85 } 85 }
86 86