Files
smom-dbis-138/scripts/deployment/setup-dev1-pve-ssh-access.sh
zaragoza444 3a7358b6b5
Some checks failed
CI/CD Pipeline / Solidity Contracts (push) Failing after 1m17s
CI/CD Pipeline / Security Scanning (push) Successful in 2m52s
CI/CD Pipeline / Lint and Format (push) Failing after 54s
CI/CD Pipeline / Terraform Validation (push) Has been cancelled
CI/CD Pipeline / Kubernetes Validation (push) Has been cancelled
Deploy ChainID 138 / Deploy ChainID 138 (push) Has been cancelled
Validation / validate-genesis (push) Has been cancelled
Validation / validate-terraform (push) Has been cancelled
Validation / validate-kubernetes (push) Has been cancelled
Validation / validate-smart-contracts (push) Has been cancelled
Validation / validate-security (push) Has been cancelled
Validation / validate-documentation (push) Has been cancelled
Verify Deployment / Verify Deployment (push) Has been cancelled
fix: PVE LXC sync via sudo SSH and single build pass
Use sudo ssh with ProxyJump=none from dev-bis-ali to Proxmox, build once before syncing all nine banking LXCs, and track deploy scripts as executable.

Co-authored-by: Cursor <cursoragent@cursor.com>
2026-06-28 17:29:29 -07:00

33 lines
1.0 KiB
Bash
Executable File

#!/usr/bin/env bash
# Ensure dev1@dev-bis-ali can reach Proxmox via sudo ssh (LAN, no cloudflared).
set -euo pipefail
CONFIG="${HOME}/.ssh/config.d-ecosystem"
PUB="${HOME}/.ssh/id_ed25519.pub"
log() { echo "[$(date -Iseconds)] $*"; }
if [[ ! -f "$PUB" ]]; then
echo "Missing $PUB — generate or copy operator SSH key first." >&2
exit 1
fi
if [[ -f "$CONFIG" ]] && grep -q 'Host 192.168.11\.\*' "$CONFIG"; then
log "Patching $CONFIG — disable ProxyJump for LAN 192.168.11.* (use pve-r630-* aliases from laptop via -J dev-bis)"
tmp="$(mktemp)"
awk '
/^Host 192\.168\.11\.\*/ { inblock=1 }
inblock && /^[[:space:]]+ProxyJump dev-bis/ { sub(/ProxyJump dev-bis/, "ProxyJump none"); }
{ print }
inblock && /^$/ { inblock=0 }
' "$CONFIG" > "$tmp"
mv "$tmp" "$CONFIG"
chmod 600 "$CONFIG"
fi
log "Testing Proxmox SSH (direct, then sudo)..."
# shellcheck source=lib/omnl-pve-ssh.sh
source "$(dirname "$0")/lib/omnl-pve-ssh.sh"
omnl_pve_preflight
log "Proxmox SSH OK via ${OMNL_PVE_SSH_PREFIX[*]:-direct}${OMNL_PVE_SSH_TARGET}"