infrastructure/cdn-in-a-box/enroller/run.sh - trafficcontrol - Git at Google

 #!/usr/bin/env bash
 #
 # Licensed to the Apache Software Foundation (ASF) under one
 # or more contributor license agreements.  See the NOTICE file
 # distributed with this work for additional information
 # regarding copyright ownership.  The ASF licenses this file
 # to you under the Apache License, Version 2.0 (the
 # "License"); you may not use this file except in compliance
 # with the License.  You may obtain a copy of the License at
 #
 #   http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing,
 # software distributed under the License is distributed on an
 # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 # KIND, either express or implied.  See the License for the
 # specific language governing permissions and limitations
 # under the License.
 ############################################################

 set -x
 . /to-access.sh

 set-dns.sh
 insert-self-into-dns.sh

 export TO_URL=https://$TO_FQDN:$TO_PORT
 export TO_USER=$TO_ADMIN_USER
 export TO_PASSWORD=$TO_ADMIN_PASSWORD

 # Wait on SSL certificate generation
 until [[ -f "$X509_CA_ENV_FILE" ]]
 do
      echo "Waiting on Shared SSL certificate generation"
      sleep 3
 done

 # Source the CIAB-CA shared SSL environment
 until [[ -n "$X509_GENERATION_COMPLETE" ]]
 do
   echo "Waiting on X509 vars to be defined"
   sleep 1
   source "$X509_CA_ENV_FILE"
 done

 # Copy the CIAB-CA certificate to the traffic_router conf so it can be added to the trust store
 cp "$X509_CA_CERT_FULL_CHAIN_FILE" /usr/local/share/ca-certificates
 update-ca-certificates

 # Traffic Ops must be accepting connections before enroller can start
 until nc -z $TO_FQDN $TO_PORT </dev/null >/dev/null && to-ping; do
     echo "Waiting for $TO_URL"
     sleep 5
 done

 mkdir -p "$ENROLLER_DIR"
 if [[ ! -d $ENROLLER_DIR ]]; then
      echo "enroller dir ${ENROLLER_DIR} not found or not a directory"
      exit 1
 fi

 # clear out the enroller dir first so no files left from previous run
 rm -rf ${ENROLLER_DIR}/*

 /enroller -dir "$ENROLLER_DIR" || tail -f /dev/null
	#!/usr/bin/env bash
	#
	# Licensed to the Apache Software Foundation (ASF) under one
	# or more contributor license agreements. See the NOTICE file
	# distributed with this work for additional information
	# regarding copyright ownership. The ASF licenses this file
	# to you under the Apache License, Version 2.0 (the
	# "License"); you may not use this file except in compliance
	# with the License. You may obtain a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing,
	# software distributed under the License is distributed on an
	# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	# KIND, either express or implied. See the License for the
	# specific language governing permissions and limitations
	# under the License.
	############################################################

	set -x
	. /to-access.sh

	set-dns.sh
	insert-self-into-dns.sh

	export TO_URL=https://$TO_FQDN:$TO_PORT
	export TO_USER=$TO_ADMIN_USER
	export TO_PASSWORD=$TO_ADMIN_PASSWORD

	# Wait on SSL certificate generation
	until [[ -f "$X509_CA_ENV_FILE" ]]
	do
	echo "Waiting on Shared SSL certificate generation"
	sleep 3
	done

	# Source the CIAB-CA shared SSL environment
	until [[ -n "$X509_GENERATION_COMPLETE" ]]
	do
	echo "Waiting on X509 vars to be defined"
	sleep 1
	source "$X509_CA_ENV_FILE"
	done

	# Copy the CIAB-CA certificate to the traffic_router conf so it can be added to the trust store
	cp "$X509_CA_CERT_FULL_CHAIN_FILE" /usr/local/share/ca-certificates
	update-ca-certificates

	# Traffic Ops must be accepting connections before enroller can start
	until nc -z $TO_FQDN $TO_PORT </dev/null >/dev/null && to-ping; do
	echo "Waiting for $TO_URL"
	sleep 5
	done

	mkdir -p "$ENROLLER_DIR"
	if [[ ! -d $ENROLLER_DIR ]]; then
	echo "enroller dir ${ENROLLER_DIR} not found or not a directory"
	exit 1
	fi

	# clear out the enroller dir first so no files left from previous run
	rm -rf ${ENROLLER_DIR}/*

	/enroller -dir "$ENROLLER_DIR" \|\| tail -f /dev/null