[infra] vault + chsettle + aurora for dev
This commit is contained in:
Stephan D
@@ -19,8 +19,6 @@ SERVICE_NAMES="${CALLBACKS_SERVICE_NAME}"
|
||||
REQUIRED_SECRETS=(
|
||||
CALLBACKS_MONGO_USER
|
||||
CALLBACKS_MONGO_PASSWORD
|
||||
CALLBACKS_VAULT_ROLE_ID
|
||||
CALLBACKS_VAULT_SECRET_ID
|
||||
NATS_USER
|
||||
NATS_PASSWORD
|
||||
NATS_URL
|
||||
@@ -44,8 +42,8 @@ b64enc() {
|
||||
|
||||
CALLBACKS_MONGO_USER_B64="$(b64enc "${CALLBACKS_MONGO_USER}")"
|
||||
CALLBACKS_MONGO_PASSWORD_B64="$(b64enc "${CALLBACKS_MONGO_PASSWORD}")"
|
||||
CALLBACKS_VAULT_ROLE_ID_B64="$(b64enc "${CALLBACKS_VAULT_ROLE_ID}")"
|
||||
CALLBACKS_VAULT_SECRET_ID_B64="$(b64enc "${CALLBACKS_VAULT_SECRET_ID}")"
|
||||
CALLBACKS_VAULT_ROLE_ID_B64="$(b64enc "${CALLBACKS_VAULT_ROLE_ID:-}")"
|
||||
CALLBACKS_VAULT_SECRET_ID_B64="$(b64enc "${CALLBACKS_VAULT_SECRET_ID:-}")"
|
||||
NATS_USER_B64="$(b64enc "${NATS_USER}")"
|
||||
NATS_PASSWORD_B64="$(b64enc "${NATS_PASSWORD}")"
|
||||
NATS_URL_B64="$(b64enc "${NATS_URL}")"
|
||||
@@ -111,6 +109,9 @@ load_kv_file() {
|
||||
done <"$file"
|
||||
}
|
||||
load_kv_file ../env/.env.version
|
||||
if [[ -f ../env/vault.env ]]; then
|
||||
load_kv_file ../env/vault.env
|
||||
fi
|
||||
set +a
|
||||
|
||||
IMAGE_TAG="${IMAGE_TAG:-${APP_V}-${GIT_REV}}"
|
||||
@@ -142,6 +143,10 @@ NATS_URL="$(decode_b64 "$NATS_URL_B64")"
|
||||
export CALLBACKS_MONGO_USER CALLBACKS_MONGO_PASSWORD
|
||||
export CALLBACKS_VAULT_ROLE_ID CALLBACKS_VAULT_SECRET_ID
|
||||
export NATS_USER NATS_PASSWORD NATS_URL
|
||||
if [[ -z "${CALLBACKS_VAULT_ROLE_ID:-}" || -z "${CALLBACKS_VAULT_SECRET_ID:-}" ]]; then
|
||||
echo "missing required secret env: CALLBACKS_VAULT_ROLE_ID/CALLBACKS_VAULT_SECRET_ID" >&2
|
||||
exit 65
|
||||
fi
|
||||
COMPOSE_PROJECT_NAME="$COMPOSE_PROJECT"
|
||||
export COMPOSE_PROJECT_NAME
|
||||
read -r -a SERVICES <<<"${SERVICES_LINE}"
|
||||
|
||||
Reference in New Issue
Block a user