add ssh host keys to jump host

naps-product-sa · Apr 30, 2024 · 1fb7a1d · 1fb7a1d
1 parent aeb78dc
commit 1fb7a1d
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/cloudformation.yaml b/cloudformation.yaml
@@ -592,7 +592,10 @@ Resources:
 
   JumpInstance:
     Type: AWS::EC2::Instance
-    DependsOn: InternetGatewayAttachment
+    DependsOn: 
+      - InternetGatewayAttachment
+      - HighSideInstance
+      - SalsaImageRegistryInstance
     Properties:
       ImageId: !FindInMap ["RegionMap", !Ref "AWS::Region", "ami"]
       InstanceType: !Ref JumpInstanceType
@@ -668,6 +671,11 @@ Resources:
           curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o /tmp/awscliv2.zip
           unzip -q -d /tmp /tmp/awscliv2.zip && rm -f /tmp/awscliv2.zip && /tmp/aws/install && rm -rf /tmp/aws
 
+          # scan for other SSH hosts
+          ssh-keyscan highside >> /etc/ssh/ssh_known_hosts
+          ssh-keyscan salsa-registry >> /etc/ssh/ssh_known_hosts
+          ssh-keyscan nat >> /etc/ssh/ssh_known_hosts
+
           # Setup VNC
           yum -y install "@GNOME" firefox tigervnc-server