Compare commits
3 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
| 66afa1519d | |||
| 4257aa7662 | |||
| 119153e4d6 |
@@ -0,0 +1,28 @@
|
|||||||
|
name: Auto-Unseal for Vault
|
||||||
|
on:
|
||||||
|
schedule:
|
||||||
|
- cron: "30 2 * * *"
|
||||||
|
jobs:
|
||||||
|
auto-unseal:
|
||||||
|
name: Unseal Vault
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
env:
|
||||||
|
VAULT_ADDR: ${{ secrets.RINOA_VAULT_ADDR }}
|
||||||
|
VAULT_TOKEN: ${{ secrets.VAULT_GITEA_TOKEN }}
|
||||||
|
VAULT_SHARDS: |
|
||||||
|
${{ secrets.VAULT_UNSEAL_SHARDS }}
|
||||||
|
VAULT_NAMESPACE: ""
|
||||||
|
steps:
|
||||||
|
- name: Cache Vault install
|
||||||
|
id: cache-vault
|
||||||
|
uses: actions/cache@v4
|
||||||
|
with:
|
||||||
|
path: /opt/hostedtoolcache/vault/1.18.0/x64
|
||||||
|
key: vault-${{ runner.os }}-1.18.0
|
||||||
|
- name: Install Vault
|
||||||
|
uses: cpanato/vault-installer@main
|
||||||
|
- name: Unseal Vault
|
||||||
|
run: |
|
||||||
|
for vault_shard in $(cat ${VAULT_SHARDS}); do
|
||||||
|
vault operator unseal -address=${VAULT_ADDR} -non-interactive "${vault_shard}"
|
||||||
|
done
|
||||||
@@ -101,7 +101,7 @@
|
|||||||
| pgbackweb | eduardolat/pgbackweb:latest |
|
| pgbackweb | eduardolat/pgbackweb:latest |
|
||||||
| pgbackweb-db | postgres:16-alpine |
|
| pgbackweb-db | postgres:16-alpine |
|
||||||
| plantuml-server | plantuml/plantuml-server:jetty |
|
| plantuml-server | plantuml/plantuml-server:jetty |
|
||||||
| portainer | portainer/portainer-ce:2.27.0-alpine |
|
| portainer | portainer/portainer-ce:alpine |
|
||||||
| portall | need4swede/portall:latest |
|
| portall | need4swede/portall:latest |
|
||||||
| postal-smtp | ghcr.io/postalserver/postal:latest |
|
| postal-smtp | ghcr.io/postalserver/postal:latest |
|
||||||
| postal-web | ghcr.io/postalserver/postal:latest |
|
| postal-web | ghcr.io/postalserver/postal:latest |
|
||||||
|
|||||||
Reference in New Issue
Block a user