sa_8001/dsk-devops-toolchains
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

디렉토리 구조 및 각 서비스 추가

Browse Source
This commit is contained in:
dsk-minchulahn
2024-01-03 17:29:11 +09:00
parent 98de2a7627
commit d601d0f259
1632 changed files with 207616 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
helm/vault/command/admin-policy.hcl Normal file
View File

@@ -0,0 +1,3 @@
path "*" {
capabilities = ["create", "read", "update", "delete", "list", "sudo"]
}

14
helm/vault/command/command.sh Normal file
View File

@@ -0,0 +1,14 @@
kube_vault='kubectl -n vault exec -it vault-0 -- '
${kube_vault} vault auth enable userpass
${kube_vault} vault write auth/userpass/users/havelight password=wjdwogml1! policies=admin
${kube_vault} vault write auth/userpass/users/sa_8001 password=quswjdgns1! policies=admin
${kube_vault} vault write auth/userpass/users/minchulahn password=dksalscjf1! policies=admin
${kube_vault} vault secrets enable -version=2 -path=host kv
${kube_vault} vault auth enable approle
${kube_vault} vault write auth/approle/role/ansible token_policies="ansible" token_ttl=12h token_max_ttl=24h
${kube_vault} vault read auth/approle/role/ansible/role-id
${kube_vault} vault write -force auth/approle/role/ansible/secret-id