add ssh key for test-user in windows

Author: yasar-observe

Diff for: test_code/AZURE_MACHINES/main.tf

@@ -12,6 +12,13 @@ locals {
 
 }
 
+data "template_file" "init" {
+  template = "${file("${path.module}/azure_windows.ps.tpl")}"
+  vars = {
+    public_key = (var.CI) ? var.PUBLIC_KEY : file(var.public_key_path)
+  }
+}
+
 resource "azurerm_resource_group" "linux_host_test" {
   name     = format(var.name_format, "linux-host-test-resources")
   location = var.location
@@ -52,7 +59,7 @@ resource "azurerm_linux_virtual_machine" "linux_host_test" {
   custom_data = filebase64(each.value.user_data)
 }
 
-resource "azurerm_windows_virtual_machine" "windows_host_test" {
+resource "azurerm_windows_virtual_machine" "linux_host_test" {
   # https://azapril.dev/2020/05/12/terraform-depends_on/
   depends_on = [
     azurerm_network_interface_security_group_association.linux_host_test
@@ -81,5 +88,5 @@ resource "azurerm_windows_virtual_machine" "windows_host_test" {
     version   = each.value.source_image_reference.version
   }
 
-  custom_data = filebase64(each.value.user_data)
+  custom_data = filebase64(data.template_file.init.rendered)
 }

Diff for: test_code/user_data/azure_windows.ps.tpl

@@ -0,0 +1,46 @@
+<powershell>
+# Execute it with elevated permissions
+# Description: 
+# This script install automatically the open-ssh feature and enable it
+
+# enable tls1.2 for downloads
+[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12
+
+# creating openssh folder and download the zip
+mkdir c:\openssh-install 
+cd c:\openssh-install
+
+#update the last version if you want the last release
+Invoke-WebRequest -Uri "https://github.com/PowerShell/Win32-OpenSSH/releases/download/V8.6.0.0p1-Beta/OpenSSH-Win64.zip" -OutFile .\openssh.zip
+Expand-Archive .\openssh.zip -DestinationPath .\openssh\
+cd .\openssh\OpenSSH-Win64\
+
+# required for enable the service
+setx PATH "$env:path;c:\openssh-install\openssh\OpenSSH-Win64\" -m
+
+# required for install the service
+powershell.exe -ExecutionPolicy Bypass -File install-sshd.ps1
+
+# required for execute remote connections
+New-NetFirewallRule -Name sshd -DisplayName 'OpenSSH Server (sshd)' -Enabled True -Direction Inbound -Protocol TCP -Action Allow -LocalPort 22
+
+net start sshd
+
+# auto enable for each restart machine
+Set-Service sshd -StartupType Automatic
+
+#Set default shell to powershell
+New-ItemProperty -Path "HKLM:\SOFTWARE\OpenSSH" -Name DefaultShell -Value "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -PropertyType String -Force
+
+# Configure SSH for the specific user "test-user" with public key "12345"
+$sshUser = "test-user"
+$sshPublicKey = "${var.public_key}"
+$sshUserPath = "C:\ProgramData\ssh\administrators_authorized_keys"
+
+# Append the public key to the authorized_keys file for the user
+Add-Content -Path $sshUserPath -Value "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC12345"
+
+# Restart the sshd service to apply the changes
+Restart-Service sshd
+</powershell>
+<persist>true</persist>