From e6610a4c02a1334271feac4dcb1ef0650a793ea9 Mon Sep 17 00:00:00 2001
From: Jan Zickermann <jan.zickermann@dataport.de>
Date: Fri, 13 Dec 2024 17:20:16 +0100
Subject: [PATCH] #2 OZG-7121 Add fetch-trust-store script

---
 scripts/.gitignore           |  2 ++
 scripts/fetch-trust-store.sh | 15 +++++++++++++++
 2 files changed, 17 insertions(+)
 create mode 100644 scripts/.gitignore
 create mode 100755 scripts/fetch-trust-store.sh

diff --git a/scripts/.gitignore b/scripts/.gitignore
new file mode 100644
index 0000000..21d3832
--- /dev/null
+++ b/scripts/.gitignore
@@ -0,0 +1,2 @@
+*.crt
+*.jks
\ No newline at end of file
diff --git a/scripts/fetch-trust-store.sh b/scripts/fetch-trust-store.sh
new file mode 100755
index 0000000..cad8fa8
--- /dev/null
+++ b/scripts/fetch-trust-store.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+set -e
+
+NAMESPACE=${NAMESPACE:-by-enable-dev}
+
+echo "[1.0] Find xta-test-server pod in namespace $NAMESPACE"
+XTA_TEST_SERVER_POD=$(kubectl get pods -n "$NAMESPACE" -l app.kubernetes.io/name=xta-test-server -o jsonpath='{.items[0].metadata.name}')
+
+echo "[1.1] Fetch truststore from xta-test-server pod"
+kubectl cp "$NAMESPACE/$XTA_TEST_SERVER_POD:/store/truststore.jks" xta-test-truststore.jks
+
+echo "[2.0] Show certificate in truststore xta-test-truststore.jks"
+keytool -exportcert -keystore xta-test-truststore.jks -storepass password -alias xta-test-root-ca -file xta-test-root-ca.crt
+openssl x509 -in xta-test-root-ca.crt -text -noout
\ No newline at end of file
-- 
GitLab