feat(ess-pro/compose): deploy Element Server Suite Pro via Compose
initial commit of the converted role from helm charts for qubernetis to compose ansible role
This commit is contained in:
parent
c11f019aae
commit
32eca6b923
33 changed files with 1906 additions and 0 deletions
20
roles/ess_pro_compose/examples/openbao-bootstrap.sh
Executable file
20
roles/ess_pro_compose/examples/openbao-bootstrap.sh
Executable file
|
|
@ -0,0 +1,20 @@
|
|||
#!/usr/bin/env bash
|
||||
# Bootstrap the OpenBao entry for ess_pro_compose.
|
||||
# Only stores the registry credentials and the OIDC client secret —
|
||||
# the rest of the cryptographic material is generated by the role locally
|
||||
# on first deploy (and persists in {{ ess_compose_secrets_dir }} on the host).
|
||||
|
||||
set -euo pipefail
|
||||
MOUNT="${MOUNT:-kv}"
|
||||
PATH_="${PATH_:-digitalboard/ess-compose}"
|
||||
|
||||
read -p "Element registry username (from customer.element.io): " REG_USER
|
||||
read -sp "Element registry token: " REG_TOKEN; echo
|
||||
read -sp "Authentik OIDC client_secret for ess-mas: " OIDC_SECRET; echo
|
||||
|
||||
bao kv put "${MOUNT}/${PATH_}" \
|
||||
registry_username="${REG_USER}" \
|
||||
registry_token="${REG_TOKEN}" \
|
||||
oidc_client_secret="${OIDC_SECRET}"
|
||||
|
||||
echo "Done. Verify: bao kv get ${MOUNT}/${PATH_}"
|
||||
Loading…
Add table
Add a link
Reference in a new issue