Updated Authelia container template; added helper scripts

author: RATDAD <lambda@disroot.org> 2026-02-15 17:02:20 -0500
committer: RATDAD <lambda@disroot.org> 2026-02-15 17:02:20 -0500
commit: e82c1c7ab7c63d584a4ba1a89f86732717aec4f3 (patch)
tree: 379c607401ce754921e22a7fe7ecc6a1e0f36f4c /stacks/iam/util/gen-secrets.sh
parent: a3f074fc780747f0cedfb8184502fc8e8834457a (diff)
download: rd-cloud-e82c1c7ab7c63d584a4ba1a89f86732717aec4f3.tar.gz
rd-cloud-e82c1c7ab7c63d584a4ba1a89f86732717aec4f3.tar.bz2
rd-cloud-e82c1c7ab7c63d584a4ba1a89f86732717aec4f3.zip
1 files changed, 21 insertions, 0 deletions
diff --git a/stacks/iam/util/gen-secrets.sh b/stacks/iam/util/gen-secrets.sh
new file mode 100755
index 0000000..832f5d8
--- /dev/null
+++ b/stacks/iam/util/gen-secrets.sh
@@ -0,0 +1,21 @@
+#!/bin/bash
+
+USERS=(RATDAD)
+SECRETS=(SESSION_SECRET STORAGE_ENCRYPTION JWT_SECRET OIDC_HMAC_SECRET)
+SECRET_DIR=$PWD/secrets
+
+[ ! -d "$SECRET_DIR" ] && mkdir -p "$SECRET_DIR"
+
+# Generate secrets
+for filename in "${SECRETS[@]}"; do
+    if [ ! -f "$SECRET_DIR"/"$filename" ]; then
+        openssl rand -hex 64 > "$SECRET_DIR"/"$filename"
+    fi
+done
+
+# Generate admin passwords
+for filename in "${USERS[@]}"; do
+    if [ ! -f "$SECRET_DIR"/"$filename" ]; then
+        openssl rand -hex 12 > "$SECRET_DIR"/"$filename"
+    fi
+done
author	RATDAD <lambda@disroot.org>	2026-02-15 17:02:20 -0500
committer	RATDAD <lambda@disroot.org>	2026-02-15 17:02:20 -0500
commit	e82c1c7ab7c63d584a4ba1a89f86732717aec4f3 (patch)
tree	379c607401ce754921e22a7fe7ecc6a1e0f36f4c /stacks/iam/util/gen-secrets.sh
parent	a3f074fc780747f0cedfb8184502fc8e8834457a (diff)
download	rd-cloud-e82c1c7ab7c63d584a4ba1a89f86732717aec4f3.tar.gz rd-cloud-e82c1c7ab7c63d584a4ba1a89f86732717aec4f3.tar.bz2 rd-cloud-e82c1c7ab7c63d584a4ba1a89f86732717aec4f3.zip