Generate a SSH key for concourse git repos

In order to use the pool resource to lock pipelines, which uses a git based backend, we need to generate a new SSH key pair. This keys will be different than the ones uses on the servers because security reasons, as it will be passed to the pipelines as parameter. We use the same code to generate the one unique key per environment only once. The key will be called git_id_rsa.
alphagov · Mar 23, 2016 · f2afc9c · f2afc9c
1 parent d57fa49
commit f2afc9c
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/concourse/pipelines/create-deployer.yml b/concourse/pipelines/create-deployer.yml
@@ -174,6 +174,9 @@ jobs:
             ssh-keygen -t rsa -b 4096 -f generated_id_rsa -N ''
             ./paas-cf/concourse/scripts/s3init.sh {{state_bucket}} id_rsa generated_id_rsa
             ./paas-cf/concourse/scripts/s3init.sh {{state_bucket}} id_rsa.pub generated_id_rsa.pub
+            ssh-keygen -t rsa -b 4096 -f generated_git_id_rsa -N ''
+            ./paas-cf/concourse/scripts/s3init.sh {{state_bucket}} git_id_rsa generated_git_id_rsa
+            ./paas-cf/concourse/scripts/s3init.sh {{state_bucket}} git_id_rsa.pub generated_git_id_rsa.pub
 
     - task: deploy-vpc
       config: