CogStack-NiFi/scripts/gitea_authorize_with_ssh.sh at main · CogStack/CogStack-NiFi · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
#!/bin/bash
set -e

GITEA_ENV_FILE="./deploy/gitea.env"

if [ -f "$GITEA_ENV_FILE" ]; then
  echo "📦 Loading environment from $GITEA_ENV_FILE"
  set -a
  source "$GITEA_ENV_FILE"
  set +a
else
  echo "⚠️  $GITEA_ENV_FILE not found — attempting to load from ../deploy/gitea.env"
  set -a
  source ".$GITEA_ENV_FILE"
  set +a
fi

# 1. Generate SSH key if it doesn't exist
echo "================================================================================================================================================="
echo "# 1. Generate SSH key if it doesn't exist"

# Clean up stale host fingerprints for Gitea SSH
ssh-keygen -R "[127.0.0.1]:2222" >/dev/null 2>&1 || true
ssh-keygen -R "[localhost]:2222" >/dev/null 2>&1 || true

if [ ! -f "$GITEA_LOCAL_KEY_PATH" ]; then
  echo "🔐 Generating SSH key..."
  ssh-keygen -t rsa -b 4096 -C "$GITEA_USER@localhost" -f "$GITEA_LOCAL_KEY_PATH" -N ""
fi

if [ -f "$GITEA_LOCAL_KEY_PATH" ]; then
  if ssh-add -l | grep -q "$GITEA_LOCAL_KEY_PATH"; then
    ssh-add -d $GITEA_LOCAL_KEY_PATH
    echo "🗑️ Removed SSH key from agent: $GITEA_LOCAL_KEY_PATH"
  else
    echo "ℹ️ SSH key not loaded in agent: $GITEA_LOCAL_KEY_PATH"
  fi
else
  echo "❌ SSH key file not found: $GITEA_LOCAL_KEY_PATH"
fi


# 2. Add it to the ssh-agent
echo "================================================================================================================================================="
echo "# 2. Add it to the ssh-agent"
eval "$(ssh-agent -s)"
ssh-add "$GITEA_LOCAL_KEY_PATH"

# 3. Upload to Gitea via API
echo "================================================================================================================================================="
echo "# 3. Upload to Gitea via API"

echo "🌐 Uploading SSH key to Gitea..."
curl -s -k -X POST "$GITEA_HOST_URL/api/v1/user/keys" \
  -H "Authorization: token $GITEA_TOKEN" \
  -H "Content-Type: application/json" \
  -d @- <<EOF
{
  "title": "$GITEA_LOCAL_KEY_TITLE",
  "key": "$(cat "$GITEA_LOCAL_PUB_KEY_PATH")"
}
EOF

echo "✅ SSH key uploaded as '$GITEA_LOCAL_KEY_TITLE'"