cluster/prodvider: emit crdb certs This emits short-lived user credentials for a `dev-user` in crdb-waw1 any time someone prodaccesses. Change-Id: I0266a05c1f02225d762cfd2ca61976af0658639d

commit: 02e1598eb3f7d4441b1f47892f7e073bccc5ca35 [log] [tgz]
author: Serge Bazanski <q3k@hackerspace.pl> Wed Mar 17 22:39:00 2021 +0000
committer: q3k <q3k@hackerspace.pl> Wed May 19 22:13:22 2021 +0000
tree: 70f31bd45dc0ab0ba47c0ad1f2351db0ec188aed
parent: bade46d45f2c37a3b66d2c0642d5e6a3f626ce73 [diff] [blame]
diff --git a/cluster/prodvider/service.go b/cluster/prodvider/service.go
index 160f260..19f70ed 100644
--- a/cluster/prodvider/service.go
+++ b/cluster/prodvider/service.go

@@ -81,10 +81,19 @@
 		return nil, status.Error(codes.Unavailable, "could not generate hspki keys")
 	}
 
+	crdbWaw1Keys, err := p.crdbCreds(ctx, username, "waw1")
+	if err != nil {
+		glog.Errorf("crdbCreds(%q): %v", username, err)
+		return nil, status.Error(codes.Unavailable, "could not generate crdb keys")
+	}
+
 	return &pb.AuthenticateResponse{
 		Result:         pb.AuthenticateResponse_RESULT_AUTHENTICATED,
 		KubernetesKeys: kubernetesKeys,
 		HspkiKeys:      hspkiKeys,
+		CrdbKeys: &pb.CockroachDBKeys{
+			Clusters: []*pb.CockroachDBKeys_Cluster{crdbWaw1Keys},
+		},
 	}, nil
 }
commit	02e1598eb3f7d4441b1f47892f7e073bccc5ca35	[log] [tgz]
author	Serge Bazanski <q3k@hackerspace.pl>	Wed Mar 17 22:39:00 2021 +0000
committer	q3k <q3k@hackerspace.pl>	Wed May 19 22:13:22 2021 +0000
tree	70f31bd45dc0ab0ba47c0ad1f2351db0ec188aed
parent	bade46d45f2c37a3b66d2c0642d5e6a3f626ce73 [diff] [blame]