From dff2f4871e18c8c6ac57c92d1a538bbd1b235f10 Mon Sep 17 00:00:00 2001
From: Grant Hunter <5445379+grantdhunter@users.noreply.github.com>
Date: Thu, 1 Jan 2026 15:20:06 -0700
Subject: [PATCH] add just command to refresh client cert

---
 .gitignore |  2 +-
 justfile   | 14 ++++++++++++++
 2 files changed, 15 insertions(+), 1 deletion(-)

diff --git a/.gitignore b/.gitignore
index 5260f55..4c49fa2 100644
--- a/.gitignore
+++ b/.gitignore
@@ -17,4 +17,4 @@ kgnot/config.production.json
 *.pub
 
 .envrc
-.kubeconfig
\ No newline at end of file
+.config
\ No newline at end of file
diff --git a/justfile b/justfile
index c4a9105..d93b30e 100644
--- a/justfile
+++ b/justfile
@@ -38,3 +38,17 @@ goatchat-register-review:
     bws run 'curl -v -H '\"'Authorization: SharedSecret $GOATCHAT_REGISTRATION_ADMIN_API_SHARE_SECRET'\"' \
         -H "Content-Type: application/json" \
         https://goatchat.ca/gate/api/token' | jq
+
+refresh-client-cert:
+    #!/bin/bash
+    yq -r .machine.ca.crt controlplane.yaml | base64 -d > ca.crt
+    yq -r .machine.ca.key controlplane.yaml | base64 -d > ca.key
+    talosctl gen key --name admin           
+    talosctl gen csr --key admin.key --ip 127.0.0.1
+    talosctl gen crt --ca ca --csr admin.csr --name admin
+    yq -i '.contexts.fog.ca = "'"$(base64 -w0 ca.crt)"\
+    '" | .contexts.fog.crt = "'"$(base64 -w0 admin.crt)"\
+    '" | .contexts.fog.key = "'"$(base64 -w0 admin.key)"'"' \
+    .config/talosconfig
+
+    talosctl kubeconfig .config/kubeconfig -n 192.168.1.43
\ No newline at end of file