15 lines
708 B
Bash
15 lines
708 B
Bash
kube_vault='kubectl -n vault exec -it vault-0 -- '
|
|
|
|
${kube_vault} vault auth enable userpass
|
|
|
|
${kube_vault} vault write auth/userpass/users/havelight password=wjdwogml1! policies=admin
|
|
${kube_vault} vault write auth/userpass/users/sa_8001 password=quswjdgns1! policies=admin
|
|
${kube_vault} vault write auth/userpass/users/minchulahn password=dksalscjf1! policies=admin
|
|
|
|
${kube_vault} vault secrets enable -version=2 -path=host kv
|
|
${kube_vault} vault auth enable approle
|
|
|
|
${kube_vault} vault write auth/approle/role/ansible token_policies="ansible" token_ttl=12h token_max_ttl=24h
|
|
${kube_vault} vault read auth/approle/role/ansible/role-id
|
|
${kube_vault} vault write -force auth/approle/role/ansible/secret-id
|