Google Git
Sign in
chromium / chromiumos / platform / satlab / refs/heads/stabilize-14388.61.B^! / .
commit5fea6ddbefbc24a1e2793bee8ce63162677542cb[log] [tgz]
authorAnh Le <anhdle@google.com>Mon Nov 29 21:25:22 2021
committerAnh Le <anhdle@chromium.org>Tue Dec 07 18:14:38 2021
tree0843a829bdeb4a307341b2479d79bc8531b7a75c
parent6919237e3e4bf0d13548d53f7cc07725e8e23a2f [diff]
[satlab] Allow user to user their own service account

BUG=b:202683783

Change-Id: Ie01c702f6b68812fd335640cfd55c6fc759abca0
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/satlab/+/3282952
Reviewed-by: Prasad Vuppalapu <prasadv@chromium.org>
Commit-Queue: Anh Le <anhdle@chromium.org>
Tested-by: Anh Le <anhdle@chromium.org>
Auto-Submit: Anh Le <anhdle@chromium.org>

diff --git a/src/dockerfiles/satlab_remote_access/tools/satlab_setup b/src/dockerfiles/satlab_remote_access/tools/satlab_setup
index e27dd59..179e95b 100755
--- a/src/dockerfiles/satlab_remote_access/tools/satlab_setup
+++ b/src/dockerfiles/satlab_remote_access/tools/satlab_setup

@@ -15,8 +15,10 @@
 
 1. Authenticate user using GCloud SDK(uses gcloud-sdk docker container),
    when prompted please use your google.com account
-2. Get required service account and keys from cloud application.
-3. Finally reboots the chromebox. (You must restart the chromebox inorder to
+2. Ask for service account, please follow (go/satlab-manual) to create
+   the service account if needed.
+3. Get required service account and keys from cloud application.
+4. Finally reboots the chromebox. (You must restart the chromebox inorder to
    finish the satlab setup)
 ###############################################################################
 EOF
@@ -42,12 +44,20 @@
   echo "Failed to authenticate the user, you must use your @google.com account. Please try again!"
   exit
 fi
-echo "Downloading artifacts..."
-${GCLOUD} gsutil cp gs://satlab-keys/satlab_service_account.json ${KEYS_FOLDER}
-if [ "$?" -ne 0 ]; then
-  echo "Failed to download service account key, please try again!"
-  exit
-fi
+
+# TODO (anhdle): Enable mutilple service accounts when easier user workflow is available
+# read -p "Please specify the service account: " sa
+# echo "Create and download service account key..."
+# ${GCLOUD} gcloud iam service-accounts keys create "${KEYS_FOLDER}/satlab_service_account.json" --iam-account="$sa"
+# if [ "$?" -ne 0 ]; then
+#   echo "Failed to create service account key, please try again!"
+#   exit
+# fi
+
+echo
+echo "Generating service account key..."
+echo
+${GCLOUD} gcloud iam service-accounts keys create "${KEYS_FOLDER}/satlab_service_account.json" --iam-account="$SATLAB_SERIVCE_ACCOUNT"
 
 echo "Configuring Satlab Privileges successful, please reboot"
 echo