commit af96355a19c1562dd4d8515a244b3ec3ed57f07e
parent fb554cd218cd41bf065a341a3e9fb7b7d5a7df3f
Author: Andreas Gruhler <andreas.gruhler@adfinis.com>
Date: Mon, 27 May 2024 19:41:38 +0200
feat(vault): vault.env file for transit token
Diffstat:
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/vault.sh b/vault.sh
@@ -92,7 +92,6 @@ fi)}
seal "transit" {
address = "$VAULT_TRANSIT_SERVER"
- token = "$VAULT_TRANSIT_TOKEN"
disable_renewal = "false"
key_name = "autounseal"
mount_path = "transit/"
@@ -100,6 +99,8 @@ seal "transit" {
}
EOF
+echo "VAULT_TOKEN=$VAULT_TRANSIT_TOKEN" > /etc/vault.d/vault.env
+
chmod 640 /etc/vault.d/vault.hcl
systemctl enable vault
