diff options
Diffstat (limited to 'stacks/iam/util/gen-secrets.sh')
| -rwxr-xr-x | stacks/iam/util/gen-secrets.sh | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/stacks/iam/util/gen-secrets.sh b/stacks/iam/util/gen-secrets.sh new file mode 100755 index 0000000..832f5d8 --- /dev/null +++ b/stacks/iam/util/gen-secrets.sh @@ -0,0 +1,21 @@ +#!/bin/bash + +USERS=(RATDAD) +SECRETS=(SESSION_SECRET STORAGE_ENCRYPTION JWT_SECRET OIDC_HMAC_SECRET) +SECRET_DIR=$PWD/secrets + +[ ! -d "$SECRET_DIR" ] && mkdir -p "$SECRET_DIR" + +# Generate secrets +for filename in "${SECRETS[@]}"; do + if [ ! -f "$SECRET_DIR"/"$filename" ]; then + openssl rand -hex 64 > "$SECRET_DIR"/"$filename" + fi +done + +# Generate admin passwords +for filename in "${USERS[@]}"; do + if [ ! -f "$SECRET_DIR"/"$filename" ]; then + openssl rand -hex 12 > "$SECRET_DIR"/"$filename" + fi +done |