ZeroDownTime/KubeZero
3
0
Fork 0
Code Issues 1 Pull Requests 30 Packages Projects Releases Wiki Activity

feat: ensure central secret keys exists

Browse Source
This commit is contained in:
Stefan Reimer 2025-04-17 13:06:28 +01:00
parent f88d6a2f0d
commit 024a0fcfaf
2 changed files with 14 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
admin/libhelm.sh
View File

@ -80,6 +80,18 @@ function get_kubezero_secret() {
get_secret_val kubezero kubezero-secrets "$1" get_secret_val kubezero kubezero-secrets "$1"
} }
function ensure_kubezero_secret_key() {
local secret="$(kubectl get secret -n kubezero kubezero-secrets -o yaml)"
local key=""
local val=""
for key in $@; do
val=$(echo "$secret" | yq ".data.\"$key\"")
if [ "$val" == "null" ]; then
kubectl patch secret -n kubezero kubezero-secrets --patch="{\"data\": { \"$key\": \"\" }}"
fi
done
}
function set_kubezero_secret() { function set_kubezero_secret() {
local key="$1" local key="$1"

2
charts/kubezero-argo/hooks.d/pre-install.sh
View File

@ -21,3 +21,5 @@ fi
# Redis secret # Redis secret
kubectl get secret argocd-redis -n argocd || kubectl create secret generic argocd-redis -n argocd \ kubectl get secret argocd-redis -n argocd || kubectl create secret generic argocd-redis -n argocd \
--from-literal=auth=$(date +%s | sha256sum | base64 | head -c 16 ; echo) --from-literal=auth=$(date +%s | sha256sum | base64 | head -c 16 ; echo)
ensure_kubezero_secret_key argo-cd.kubezero.username argo-cd.kubezero.password argo-cd.kubezero.sshPrivateKey