summaryrefslogtreecommitdiff
path: root/stacks/auth/secrets.sh
diff options
context:
space:
mode:
Diffstat (limited to 'stacks/auth/secrets.sh')
-rwxr-xr-xstacks/auth/secrets.sh17
1 files changed, 17 insertions, 0 deletions
diff --git a/stacks/auth/secrets.sh b/stacks/auth/secrets.sh
new file mode 100755
index 0000000..19031da
--- /dev/null
+++ b/stacks/auth/secrets.sh
@@ -0,0 +1,17 @@
+#!/bin/bash
+
+USERS=(RATDAD)
+SECRETS=(SESSION_SECRET STORAGE_ENCRYPTION JWT_SECRET OIDC_HMAC_SECRET)
+SECRET_DIR=$PWD/secrets
+
+[ ! -d "$SECRET_DIR" ] && mkdir -p "$SECRET_DIR"
+
+# Generate secrets
+for filename in "${SECRETS[@]}"; do
+ openssl rand -hex 64 > "$SECRET_DIR"/"$filename"
+done
+
+# Generate admin passwords
+for filename in "${USERS[@]}"; do
+ openssl rand -hex 12 > "$SECRET_DIR"/"$filename"
+done