blob: 527a976353bafa0a565b042d9ce00caa1302b5b2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
|
#!/usr/bin/env zsh
set -eu
export TZ=UTC
keyFile=${2%"-cert.pub"}.pub
principalsFile=${keyFile:h}/host-principals
gup -u ${keyFile} ${principalsFile}
gup -u expiration
ssh-keygen -h -Us ../ca/ca.pub -I $(uuidgen) -z $(tai64dec --no-ns) -V "-1d:$(cat expiration)" -n $(cat ${principalsFile}) -f $1 ${keyFile}
sleep 1
|
