jleechpe/k3s
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
k3s/deploy/00-infisical.sh

31 lines
1.1 KiB
Bash
Raw Normal View History

Justfile with nested kustomization to simply apply/deploy
2025-03-31 18:04:39 -04:00
#!/bin/bash
# Parse command line arguments
RECREATE=false
for arg in "$@"; do
case $arg in
--recreate)
RECREATE=true
shift
;;
esac
done
# Check if the secret already exists
SECRET_EXISTS=$(kubectl get secret universal-auth-credentials -n infisical --ignore-not-found -o name)
if [[ -n "$SECRET_EXISTS" && "$RECREATE" == "true" ]]; then
echo "Recreating Infisical bootstrap secret..."
kubectl delete secret universal-auth-credentials -n infisical
kubectl create secret generic universal-auth-credentials -n infisical \
--from-literal clientId=$(gopass show -o homelab/infisical/id) \
--from-literal clientSecret=$(gopass show -o homelab/infisical/secret)
elif [[ -z "$SECRET_EXISTS" ]]; then
echo "Creating Infisical bootstrap secret..."
kubectl create secret generic universal-auth-credentials -n infisical \
--from-literal clientId=$(gopass show -o homelab/infisical/id) \
--from-literal clientSecret=$(gopass show -o homelab/infisical/secret)
else
echo "Infisical bootstrap secret already exists, skipping creation (use --recreate to force)"
fi
Reference in a new issue Copy permalink