-
Notifications
You must be signed in to change notification settings - Fork 0
/
cloud-init.txt
25 lines (25 loc) · 1.13 KB
/
cloud-init.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
#cloud-config
package_upgrade: true
packages:
- jq
users:
- default
- name: cockroach
shell: /bin/bash
runcmd:
- curl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash
- wget -qO- https://binaries.cockroachdb.com/cockroach-v20.1.4.linux-amd64.tgz | tar xvz
- cp -i cockroach-v20.1.4.linux-amd64/cockroach /usr/local/bin/
- mkdir /var/lib/cockroach
- chown -R cockroach:cockroach /var/lib/cockroach
- COCKROACH_USER_HOME=/home/cockroach
- az login --identity
- KEYVAULT_NAME=`/usr/bin/az resource list --tag crdb=crdb-keyvault --query [].name -o tsv`
- COCKROACHDB_CERTS_PATH=$COCKROACH_USER_HOME/certs
- cockroach cert create-ca --certs-dir=$COCKROACHDB_CERTS_PATH --ca-key=$COCKROACHDB_CERTS_PATH/ca.key
- cockroach cert create-client root --certs-dir=$COCKROACHDB_CERTS_PATH --ca-key=$COCKROACHDB_CERTS_PATH/ca.key
- /usr/bin/az keyvault secret set --vault-name $KEYVAULT_NAME -n crdbkey -f $COCKROACHDB_CERTS_PATH/ca.key
- /usr/bin/az keyvault secret set --vault-name $KEYVAULT_NAME -n crdbcrt -f $COCKROACHDB_CERTS_PATH/ca.crt
- chown -R cockroach:cockroach /home/cockroach
- chmod -R o-rwx /home/cockroach
- chmod -R g+s /home/cockroach