caddy-frontend: Fetch CSR id only if not available yet

CSR id shall be requested only when it's not available yet, as otherwise it contacts caucase server needlessly, and in some circumstances it can result with bogus new CSR.

caddy-frontend: Fetch CSR id only if not available yet
CSR id shall be requested only when it's not available yet, as otherwise it contacts caucase server needlessly, and in some circumstances it can result with bogus new CSR.
bd16bf21 · Łukasz Nowak · 4a204baf · bd16bf21 · bd16bf21 · bd16bf21
Commit bd16bf21 authored Feb 15, 2022 by Łukasz Nowak
3 changed files
--- a/software/caddy-frontend/buildout.hash.cfg
+++ b/software/caddy-frontend/buildout.hash.cfg
@@ -30,7 +30,7 @@ md5sum = c5d1e235959a877b4f3157369c6f5e10
 [profile-slave-list]
 _update_hash_filename_ = templates/apache-custom-slave-list.cfg.in
-md5sum = c67e172c0c6eca955b18962404056a33
+md5sum = 9e77ca5d41541787f66a4e1872556418
 [profile-replicate-publish-slave-information]
 _update_hash_filename_ = templates/replicate-publish-slave-information.cfg.in
@@ -102,7 +102,7 @@ md5sum = 59cb33f11272ee09eccea74981d2304a
 [profile-kedifa]
 filename = instance-kedifa.cfg.in
-md5sum = dfb4dabd1e4094de1276d171f998ef47
+md5sum = 483e834e689f9a943346683e4d81eab4
 [template-backend-haproxy-rsyslogd-conf]
 _update_hash_filename_ = templates/backend-haproxy-rsyslogd.conf.in

--- a/software/caddy-frontend/instance-kedifa.cfg.in
+++ b/software/caddy-frontend/instance-kedifa.cfg.in
@@ -122,6 +122,7 @@ csr_work_path = ${directory:tmp}/${:_buildout_section_name_}
 stop-on-error = False
 update-command = ${:command}
 command =
+  [ -f {:csr_id_path} ] && exit 0
  {{ software_parameter_dict['bin_directory'] }}/caucase \
    --ca-url {{ caucase_url }} \
    --ca-crt ${kedifa-config:ca-certificate} \

--- a/software/caddy-frontend/templates/apache-custom-slave-list.cfg.in
+++ b/software/caddy-frontend/templates/apache-custom-slave-list.cfg.in
@@ -523,6 +523,7 @@ csr_work_path = {{ directory['tmp'] }}/${:_buildout_section_name_}
 stop-on-error = False
 update-command = ${:command}
 command =
+  [ -f ${:csr_id_path} ] && exit 0
  {{ software_parameter_dict['bin_directory'] }}/caucase \
    --ca-url {{ backend_haproxy_configuration['caucase-url'] }} \
    --ca-crt {{ backend_haproxy_configuration['cas-ca-certificate'] }} \
@@ -564,6 +565,7 @@ csr_work_path = {{ directory['tmp'] }}/${:_buildout_section_name_}
 stop-on-error = False
 update-command = ${:command}
 command =
+  [ -f ${:csr_id_path} ] && exit 0
  {{ software_parameter_dict['bin_directory'] }}/caucase \
    --ca-url {{ kedifa_configuration['caucase-url'] }} \
    --ca-crt {{ kedifa_configuration['cas-ca-certificate'] }} \