| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 |
- #!/command/with-contenv sh
- if [ ! -d /data ] ; then
- mkdir /data
- fi
- # normal docker secrets
- if [ ! -f /data/id_ed25519.pub ] && [ -r /run/secrets/key_pub ] ; then
- cp /run/secrets/key_pub /data/id_ed25519.pub
- echo "Public key created from secret"
- fi
- if [ ! -f /data/id_ed25519 ] && [ -r /run/secrets/key_priv ] ; then
- cp /run/secrets/key_priv /data/id_ed25519
- echo "Private key created from secret"
- fi
- # ENV variables
- if [ ! -f /data/id_ed25519.pub ] && [ ! "$KEY_PUB" = "" ] ; then
- echo -n "$KEY_PUB" > /data/id_ed25519.pub
- echo "Public key created from ENV variable"
- fi
- if [ ! -f /data/id_ed25519 ] && [ ! "$KEY_PRIV" = "" ] ; then
- echo -n "$KEY_PRIV" > /data/id_ed25519
- echo "Private key created from ENV variable"
- fi
- # check if both keys provided
- if [ -f /data/id_ed25519.pub ] && [ ! -f /data/id_ed25519 ] ; then
- echo "Private key missing."
- echo "You must provide BOTH the private and the public key."
- /run/s6/basedir/bin/halt
- exit 1
- fi
- if [ ! -f /data/id_ed25519.pub ] && [ -f /data/id_ed25519 ] ; then
- echo "Public key missing."
- echo "You must provide BOTH the private and the public key."
- /run/s6/basedir/bin/halt
- exit 1
- fi
- # here we have either no keys or both
- # if we have both keys, we fix permissions and ownership
- # and check for keypair validation
- if [ -f /data/id_ed25519.pub ] && [ -f /data/id_ed25519 ] ; then
- chmod 0600 /data/id_ed25519.pub /data/id_ed25519
- chown root:root /data/id_ed25519.pub /data/id_ed25519
- /usr/bin/rustdesk-utils validatekeypair "$(cat /data/id_ed25519.pub)" "$(cat /data/id_ed25519)" || {
- echo "Key pair not valid"
- /run/s6/basedir/bin/halt
- exit 1
- }
- fi
- # if we have no keypair, hbbs will generate one
|
