15 lines
396 B
Bash
Executable File
15 lines
396 B
Bash
Executable File
#!/bin/sh
|
|
|
|
|
|
[[ $c := merge .pg.server .pg . ]]
|
|
[[ template "common/vault.mkpki.sh.tpl" $c ]]
|
|
|
|
vault write [[ $c.vault.pki.path ]]/roles/postgres-server \
|
|
allowed_domains="[[ .instance ]][[ .consul.suffix ]].service.[[ .consul.domain ]]" \
|
|
allow_bare_domains=true \
|
|
allow_subdomains=true \
|
|
allow_localhost=false \
|
|
allow_ip_sans=true \
|
|
allow_wildcard_certificates=false \
|
|
max_ttl=72h
|