ENCD-3785 Add user to deploy auth keys (#2097)

ENCODE-DCC · Dec 20, 2017 · d7aa9e2 · d7aa9e2
1 parent e211b3f
commit d7aa9e2
Show file tree

Hide file tree

Showing 3 changed files with 6 additions and 6 deletions.
diff --git a/cloud-config-cluster.yml b/cloud-config-cluster.yml
@@ -160,8 +160,8 @@ output:
   all: '| tee -a /var/log/cloud-init-output.log'
 
 runcmd:
-- mv /home/ubuntu/.ssh/authorized_keys /home/ubuntu/.ssh/authorized_keys2
-- aws s3 cp --region=us-west-2 %(S3_AUTH_KEYS)s /home/ubuntu/.ssh/authorized_keys
+- sudo -u ubuntu mv /home/ubuntu/.ssh/authorized_keys /home/ubuntu/.ssh/authorized_keys2
+- sudo -u ubuntu aws s3 cp --region=us-west-2 %(S3_AUTH_KEYS)s /home/ubuntu/.ssh/authorized_keys
 # Ideally this would build as a different user so encoded only has read
 # permissions
 - set -ex

diff --git a/cloud-config-elasticsearch.yml b/cloud-config-elasticsearch.yml
@@ -81,8 +81,8 @@ output:
   all: '| tee -a /var/log/cloud-init-output.log'
 
 runcmd:
-- mv /home/ubuntu/.ssh/authorized_keys /home/ubuntu/.ssh/authorized_keys2
-- aws s3 cp --region=us-west-2 %(S3_AUTH_KEYS)s /home/ubuntu/.ssh/authorized_keys
+- sudo -u ubuntu mv /home/ubuntu/.ssh/authorized_keys /home/ubuntu/.ssh/authorized_keys2
+- sudo -u ubuntu aws s3 cp --region=us-west-2 %(S3_AUTH_KEYS)s /home/ubuntu/.ssh/authorized_keys
 # Ideally this would build as a different user so encoded only has read
 # permissions
 - set -ex

diff --git a/cloud-config.yml b/cloud-config.yml
@@ -160,8 +160,8 @@ output:
   all: '| tee -a /var/log/cloud-init-output.log'
 
 runcmd:
-- mv /home/ubuntu/.ssh/authorized_keys /home/ubuntu/.ssh/authorized_keys2
-- aws s3 cp --region=us-west-2 %(S3_AUTH_KEYS)s /home/ubuntu/.ssh/authorized_keys
+- sudo -u ubuntu mv /home/ubuntu/.ssh/authorized_keys /home/ubuntu/.ssh/authorized_keys2
+- sudo -u ubuntu aws s3 cp --region=us-west-2 %(S3_AUTH_KEYS)s /home/ubuntu/.ssh/authorized_keys
 # Ideally this would build as a different user so encoded only has read
 # permissions
 - set -ex