Changes between Version 1 and Version 2 of k8s/HashiCorpVault

Timestamp:

2024/06/26 10:50:45 (3 months ago)

Author:

yuna

Comment:

--

k8s/HashiCorpVault

@@ -24 +24 @@
 #!/bin/sh
 
-sleep 5
+# Wwiting if vault server is not started.
+while true ;
+do
+        vault status 
+        [[ $? -eq 1 ]] || break
+done
+
+# Initialize vault
 vault operator init -key-shares=3 > /home/vault/init-tmp
+
+
+# If Initialize is successed, keep seal-keys.
 if [ $? -eq 0 ]
 then
@@ -32 +42 @@
         rm /home/vault/init-tmp
 fi
+
+# Unseal
 for i in 1 2 3
 do
         vault operator unseal $(grep "Key $i" /vault/data/seal-keys |sed 's/Unseal Key '$i': //i') 
 done
-kubectl create configmap myscript  --from-file=init-unseal.sh  -nvault
 }}}
 
@@ -42 +53 @@
 kubectl create ns vault
 kubectl create configmap myscript  --from-file=init-unseal.sh  -nvault
-helm install vault hashicorp/vault -nvault -f values.yaml
+helm install vaullt hashicorp/vault -nvault -f values.yaml
 }}}