jpp/ansible-roles
1
0
Fork 0
mirror of https://git.lapiole.org/dani/ansible-roles.git synced 2025-04-23 13:43:18 +02:00
Code Issues Packages Projects Releases Wiki Activity
ansible-roles/roles/vault/templates/unseal
Daniel Berteaud d5a00e4130 Update to 2024-04-17 12:01
2024-04-17 12:01:07 +02:00

21 lines
504 B
Bash
Raw Blame History

#!/bin/sh
export VAULT_ADDR={{ vault_conf.api_addr }}
UNSEAL='{% if vault_unseal_keys | length > 0 %}{{ vault_unseal_keys | join(',') }}{% endif %}'
STATUS=$(vault status -format json)
if [ "$(echo ${STATUS} | jq -r .initialized)" != "true" ]; then
echo "Vault not initialized yet"
exit 0
fi
if [ "$(echo ${STATUS} | jq -r .sealed)" != "true" ]; then
echo "Vault not sealed, nothing to do"
exit 0
fi
for KEY in $(echo ${UNSEAL} | sed -E 's/,/\n/g'); do
vault operator unseal "${KEY}"
done
Reference in New Issue View Git Blame Copy Permalink