Add ssh-key-upgrade scriptHEADmaster

1 files changed, 29 insertions, 0 deletions

diff --git a/ssh-key-upgrade b/ssh-key-upgrade
new file mode 100755
index 0000000..b15ce1e
--- /dev/null
+++ b/ssh-key-upgrade
@@ -0,0 +1,29 @@
+#!/usr/bin/env bash
+# ssh key migration script, allow to replace old ssh key to new seamlessly
+#
+# Usage example as ssh command replacement:
+#
+# ssh() {
+#   if [ $# -eq 1 ]; then
+#     ssh-key-upgrade "$1"
+#   fi
+#   command ssh "$@"
+# }
+
+set -euo pipefail
+
+SSH_KEY_UPGRADE_OLD_KEY="${SSH_KEY_UPGRADE_OLD_KEY:-$HOME/.ssh/id_rsa.pub}"
+SSH_KEY_UPGRADE_NEW_KEY="${SSH_KEY_UPGRADE_ONEW_KEY:-$HOME/.ssh/id_ed25519.pub}"
+
+main() {
+  local host="$1"
+  local keys='.ssh/authorized_keys'
+  local oldkey
+  oldkey=$(cat "${SSH_KEY_UPGRADE_OLD_KEY}")
+  if ssh "$host" "grep -Fq '$oldkey' '$keys'"; then
+    ssh-copy-id -i "$SSH_KEY_UPGRADE_NEW_KEY" "$host"
+    ssh "$host" "sed -i -e '\#$oldkey#d' $keys"
+  fi
+}
+
+main "$@"