Skip to content

Commit

Permalink
Terraform needs a pfx certificate file format
Browse files Browse the repository at this point in the history
  • Loading branch information
@zioproto
zioproto committed Mar 4, 2024
1 parent 9bb0dad commit 0b3d0fe
Showing 1 changed file with 7 additions and 2 deletions.
9 changes: 7 additions & 2 deletions .devcontainer/script.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,8 +25,13 @@ fi

# If ARM_CLIENT_CERTIFICATE is set, decode it and save to a temp file
if [ -n "$ARM_CLIENT_CERTIFICATE" ]; then
echo "$ARM_CLIENT_CERTIFICATE" | base64 -d > /tmp/certfile
az login --service-principal -u $ARM_CLIENT_ID --tenant $ARM_TENANT_ID -p /tmp/certfile
echo "$ARM_CLIENT_CERTIFICATE" | base64 -d > /tmp/certfile.pem
export ARM_CLIENT_CERTIFICATE_PATH="/tmp/certfile.pfx"
export ARM_CLIENT_CERTIFICATE_PASSWORD=$(date '+%s')
echo "$ARM_CLIENT_CERTIFICATE" | base64 -d | openssl pkcs12 -export -password pass:"$(ARM_CLIENT_CERTIFICATE_PASSWORD)" -out $ARM_CLIENT_CERTIFICATE_PATH
unset ARM_CLIENT_CERTIFICATE
az login --service-principal -u $ARM_CLIENT_ID --tenant $ARM_TENANT_ID -p /tmp/certfile.pem

else
# Otherwise, use ARM_CLIENT_SECRET
az login --service-principal -u $ARM_CLIENT_ID -p $ARM_CLIENT_SECRET --tenant $ARM_TENANT_ID
Expand Down

0 comments on commit 0b3d0fe

Please sign in to comment.