fix(docker-entrypoint): generate SAML metadata only if it does not already exist

niheconomoum · niheconomoum · commit 9315599f6ad9 · 2022-11-18T08:27:34.000-05:00
Also, only generate SAML metadata if suitable keying material is available since SATOSA will not currently generate unsigned metadata. Fixes #2
diff --git a/docker-entrypoint.sh b/docker-entrypoint.sh
@@ -123,6 +123,8 @@ function docker_create_config() {
 }
 
 function docker_pprint_metadata() {
+	if [ \( ! -f backend.key \) -o \( ! -f backend.crt \) -o -f backend.xml -o -f frontend.xml ]; then return; fi
+
 	# use the SAML2 backend keymat to temporarily sign the generated metadata
 	touch backend.xml frontend.xml
 	satosa-saml-metadata proxy_conf.yaml backend.key backend.crt

Original file line number	Diff line number	Diff line change
`@@ -123,6 +123,8 @@ function docker_create_config() {`
`123`	`123`	`}`
`124`	`124`
`125`	`125`	`function docker_pprint_metadata() {`
	`126`	`+ if [ \( ! -f backend.key \) -o \( ! -f backend.crt \) -o -f backend.xml -o -f frontend.xml ]; then return; fi`
	`127`	`+`
`126`	`128`	`# use the SAML2 backend keymat to temporarily sign the generated metadata`
`127`	`129`	`touch backend.xml frontend.xml`
`128`	`130`	`satosa-saml-metadata proxy_conf.yaml backend.key backend.crt`