numbus/numbus-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Added secrets management for data and parity disks

Browse Source
This commit is contained in:
Raphaël Billet
2025-11-26 21:58:13 +01:00
parent ffbf0bcbe9
commit d4c2de55f3
3 changed files with 29 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
deploy.sh
+9
View File
@@ -180,6 +180,15 @@ files_generation() {
PASSBOLT_MYSQL_USER=$(openssl rand -base64 29 | tr -d "123456789=+/" | cut -c1-10)
PASSBOLT_MYSQL_PASSWORD=$(openssl rand -base64 29 | tr -d "=+/" | cut -c1-64)
FTLCONF_WEBSERVER_PASSWORD=$(openssl rand -base64 29 | tr -d "=+/" | cut -c1-64)
DATA-DISK-1=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
DATA-DISK-2=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
DATA-DISK-3=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
DATA-DISK-4=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
DATA-DISK-5=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
DATA-DISK-6=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
PARITY-DISK-1=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
PARITY-DISK-2=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
PARITY-DISK-3=$(openssl rand -base64 300 | tr -d "=+/" | cut -c1-256)
echo -e "\n\n ✅ Encrypting secrets in the correct file..."
envsubst < "config-files/sops-nix/secrets.yaml" | sops encrypt --filename-override secrets.yaml \