From e82c1c7ab7c63d584a4ba1a89f86732717aec4f3 Mon Sep 17 00:00:00 2001
From: RATDAD <lambda@disroot.org>
Date: Sun, 15 Feb 2026 17:02:20 -0500
Subject: Updated Authelia container template; added helper scripts

---
 stacks/iam/util/gen-secrets.sh | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100755 stacks/iam/util/gen-secrets.sh

(limited to 'stacks/iam/util/gen-secrets.sh')

diff --git a/stacks/iam/util/gen-secrets.sh b/stacks/iam/util/gen-secrets.sh
new file mode 100755
index 0000000..832f5d8
--- /dev/null
+++ b/stacks/iam/util/gen-secrets.sh
@@ -0,0 +1,21 @@
+#!/bin/bash
+
+USERS=(RATDAD)
+SECRETS=(SESSION_SECRET STORAGE_ENCRYPTION JWT_SECRET OIDC_HMAC_SECRET)
+SECRET_DIR=$PWD/secrets
+
+[ ! -d "$SECRET_DIR" ] && mkdir -p "$SECRET_DIR"
+
+# Generate secrets
+for filename in "${SECRETS[@]}"; do
+    if [ ! -f "$SECRET_DIR"/"$filename" ]; then
+        openssl rand -hex 64 > "$SECRET_DIR"/"$filename"
+    fi
+done
+
+# Generate admin passwords
+for filename in "${USERS[@]}"; do
+    if [ ! -f "$SECRET_DIR"/"$filename" ]; then
+        openssl rand -hex 12 > "$SECRET_DIR"/"$filename"
+    fi
+done
-- 
cgit v1.2.3-70-g09d2