k8s/vault-setup.sh

#!/bin/bash
# vault login path
VAULT_LOGIN_NS=k8s-teapot

# local ip
HOST_IP=$(ip addr show eth0 | grep -Po 'inet \K[\d.]+')

kubectl config view --raw --minify --flatten --output='jsonpath={.clusters[].cluster.certificate-authority-data}' | base64 --decode > ca.crt

vault write auth/${VAULT_LOGIN_NS}/config \
    kubernetes_host=https://${HOST_IP}:6443 \
    kubernetes_ca_cert=@ca.crt

rm ca.crt
Add k8s auth endpoint to vault 2022-07-02 18:37:33 +00:00			`#!/bin/bash`
Move stuff around, update for teapot 2022-12-28 23:06:22 +00:00			`# vault login path`
			`VAULT_LOGIN_NS=k8s-teapot`
Add k8s auth endpoint to vault 2022-07-02 18:37:33 +00:00
Move stuff around, update for teapot 2022-12-28 23:06:22 +00:00			`# local ip`
Add k8s auth endpoint to vault 2022-07-02 18:37:33 +00:00			`HOST_IP=$(ip addr show eth0 \| grep -Po 'inet \K[\d.]+')`

			`kubectl config view --raw --minify --flatten --output='jsonpath={.clusters[].cluster.certificate-authority-data}' \| base64 --decode > ca.crt`

Move stuff around, update for teapot 2022-12-28 23:06:22 +00:00			`vault write auth/${VAULT_LOGIN_NS}/config \`
Add k8s auth endpoint to vault 2022-07-02 18:37:33 +00:00			`kubernetes_host=https://${HOST_IP}:6443 \`
			`kubernetes_ca_cert=@ca.crt`
Add metallb 2022-07-02 18:41:57 +00:00
Add k8s auth endpoint to vault 2022-07-02 18:37:33 +00:00			`rm ca.crt`