aboutsummaryrefslogtreecommitdiff
path: root/releng/keys.py
diff options
context:
space:
mode:
Diffstat (limited to 'releng/keys.py')
-rw-r--r--releng/keys.py19
1 files changed, 19 insertions, 0 deletions
diff --git a/releng/keys.py b/releng/keys.py
new file mode 100644
index 000000000..14cff44dd
--- /dev/null
+++ b/releng/keys.py
@@ -0,0 +1,19 @@
+import subprocess
+import json
+from . import environment
+
+
+def get_ephemeral_key(
+ env: environment.RelengEnvironment) -> environment.S3Credentials:
+ output = subprocess.check_output([
+ 'ssh', '-l', 'root', environment.S3_HOST, 'garage-ephemeral-key',
+ 'new', '--name', f'releng-{env.name}', '--read', '--write',
+ '--age-secs', '3600',
+ env.releases_bucket.removeprefix('s3://'),
+ env.cache_bucket.removeprefix('s3://'),
+ env.docs_bucket.removeprefix('s3://'),
+ ])
+ d = json.loads(output.decode())
+ return environment.S3Credentials(name=d['name'],
+ id=d['id'],
+ secret_key=d['secret_key'])
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-21 23:14:28 +0000