File tree 2 files changed +13
-5
lines changed
2 files changed +13
-5
lines changed Original file line number Diff line number Diff line change @@ -37,4 +37,11 @@ docker exec -ti roach-1 /bin/bash
3737docker exec -ti roach-2 /bin/bash
3838docker exec -ti lb /bin/sh
3939docker exec -ti roach-cert /bin/sh
40+ ```
41+
42+ ### Copy Client Certificate and Key
43+ ``` bash
44+ docker cp roach-cert:/certs/client/client.root.crt .
45+ docker cp roach-cert:/certs/client/client.root.key .
46+ docker cp roach-cert:/certs/client/client.root.key.pk8 .
4047```
Original file line number Diff line number Diff line change @@ -40,26 +40,27 @@ RUN cockroach cert create-ca --certs-dir=/tmp/certs/ca --ca-key=/tmp/safe/ca.key
4040 && cp -v /tmp/certs/ca/ca.crt /tmp/certs/roach-1 \
4141 && cp -v /tmp/certs/ca/ca.crt /tmp/certs/roach-2
4242
43- RUN cockroach cert create-client root --certs-dir=/tmp/certs/client --ca-key=/tmp/safe/ca.key
43+ RUN cockroach cert create-client root --certs-dir=/tmp/certs/client --ca-key=/tmp/safe/ca.key --also-generate-pkcs8-key
4444
4545RUN cp -v /tmp/certs/client/client.* /tmp/certs/roach-0 \
4646 && cp -v /tmp/certs/client/client.* /tmp/certs/roach-1 \
4747 && cp -v /tmp/certs/client/client.* /tmp/certs/roach-2
4848
49- RUN cockroach cert create-node roach-0 --certs-dir=/tmp/certs/roach-0 --ca-key=/tmp/safe/ca.key
50- RUN cockroach cert create-node roach-1 --certs-dir=/tmp/certs/roach-1 --ca-key=/tmp/safe/ca.key
51- RUN cockroach cert create-node roach-2 --certs-dir=/tmp/certs/roach-2 --ca-key=/tmp/safe/ca.key
49+ RUN cockroach cert create-node roach-0 localhost lb --certs-dir=/tmp/certs/roach-0 --ca-key=/tmp/safe/ca.key
50+ RUN cockroach cert create-node roach-1 localhost lb --certs-dir=/tmp/certs/roach-1 --ca-key=/tmp/safe/ca.key
51+ RUN cockroach cert create-node roach-2 localhost lb --certs-dir=/tmp/certs/roach-2 --ca-key=/tmp/safe/ca.key
5252
5353# Stage 2 - share certs
5454
5555FROM alpine:latest
5656
5757LABEL maintainer=
"[email protected] " 5858
59- RUN mkdir -pv /certs/roach-0 /certs/roach-1 /certs/roach-2
59+ RUN mkdir -pv /certs/roach-0 /certs/roach-1 /certs/roach-2 /certs/client
6060
6161COPY --from=generator /tmp/certs/roach-0/* /certs/roach-0/
6262COPY --from=generator /tmp/certs/roach-1/* /certs/roach-1/
6363COPY --from=generator /tmp/certs/roach-2/* /certs/roach-2/
64+ COPY --from=generator /tmp/certs/client/* /certs/client/
6465
6566CMD tail -f /dev/null
You can’t perform that action at this time.
0 commit comments