refactor(vault): change random secret config structure

2025-03-09 20:30:04 +07:00 · 2022-03-09 01:00:24 +07:00 · 2022-03-09 01:00:24 +07:00 · 391ce26c63
commit 391ce26c63
parent d72e3f8505
1 changed files with 32 additions and 20 deletions
--- a/platform/vault/files/generate-secrets/main.go
+++ b/platform/vault/files/generate-secrets/main.go
@ -25,23 +25,32 @@ import (

 var data = `
 - path: gitea/admin
-  key: password
-  length: 32
-  special: true
+  data:
+    - key: password
+      length: 32
+      special: true
 - path: gitea/renovate
-  key: id
-  length: 32
-  special: false
- path: gitea/renovate
-  key: token
-  length: 32
-  special: false
+  data:
+    - key: id
+      length: 32
+      special: true
+    - key: token
+      length: 32
+      special: true
+- path: trow/admin
+  data:
+    - key: password
+      length: 32
+      special: true
 `

 type RandomPassword struct {
-	Path    string `yaml:"path"`
-	Length  int    `yaml:"length"`
-	Special bool   `yaml:"special"`
+	Path string
+	Data []struct {
+		Key     string
+		Length  int
+		Special bool
+	}
 }

 func main() {
@ -68,18 +77,21 @@ func main() {
 		secret, _ := client.Logical().Read(path)

 		if secret == nil {
-			res, err := password.Generate(32, 3, 3, false, true)
-			if err != nil {
-				log.Fatal(err)
+			secretData := map[string]interface{}{
+				"data": map[string]interface{}{},
 			}

-			secretData := map[string]interface{}{
-				"data": map[string]interface{}{
-					"password": res,
-				},
+			for _, randomKey := range randomPassword.Data {
+				res, err := password.Generate(32, 3, 3, false, true)
+				if err != nil {
+					log.Fatal(err)
+				}
+
+				secretData["data"].(map[string]interface{})[randomKey.Key] = res
 			}

 			_, err = client.Logical().Write(path, secretData)
+
 			if err != nil {
 				log.Fatalf("Unable to write secret: %v", err)
 			} else {