fregat/apollo-backend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
883e70ae86a5dbe652a96001c2aea04b302f0020
apollo-backend/scripts/load-vault-env.sh
Ruslan Bakiev 883e70ae86 Fix sourced vault bootstrap exits
2026-03-31 09:17:25 +07:00

35 lines
1.0 KiB
Bash
Executable File
Raw Blame History

#!/bin/sh
set -eu
if [ "${VAULT_ENABLED:-auto}" = "false" ] || [ "${VAULT_ENABLED:-auto}" = "0" ]; then
return 0 2>/dev/null || exit 0
fi
if [ -z "${VAULT_ADDR:-}" ] || [ -z "${VAULT_TOKEN:-}" ]; then
if [ "${VAULT_ENABLED:-auto}" = "true" ] || [ "${VAULT_ENABLED:-auto}" = "1" ]; then
echo "VAULT_ENABLED=true but VAULT_ADDR/VAULT_TOKEN are not set" >&2
return 1 2>/dev/null || exit 1
fi
return 0 2>/dev/null || exit 0
fi
if ! command -v curl >/dev/null 2>&1 || ! command -v jq >/dev/null 2>&1; then
echo "Vault bootstrap requires curl and jq." >&2
return 1 2>/dev/null || exit 1
fi
kv_mount="${VAULT_KV_MOUNT:-secret}"
load_path() {
path="$1"
[ -z "$path" ] && return 0
payload="$(curl -fsS -H "X-Vault-Token: ${VAULT_TOKEN}" "${VAULT_ADDR%/}/v1/${kv_mount}/data/${path}")"
echo "$payload" | jq -r '.data.data // {} | to_entries[] | "\(.key)=\(.value|tostring)"' | while IFS='=' read -r k v; do
export "$k=$v"
done
}
load_path "${VAULT_SHARED_PATH:-}"
load_path "${VAULT_PROJECT_PATH:-}"
Reference in New Issue View Git Blame Copy Permalink