-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathrender_config.sh
executable file
·26 lines (18 loc) · 1.24 KB
/
render_config.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
ENV=${1:-dev}
VAULT_TOKEN=${2:-$(cat "$HOME"/.vault-token)}
VAULT_ADDR="https://clotho.broadinstitute.org:8200"
DRSHUB_VAULT_PATH="secret/dsde/terra/kernel/$ENV/$ENV/drshub"
COMMON_VAULT_PATH="secret/dsde/terra/kernel/$ENV/common"
VAULT_COMMAND="vault read"
SERVICE_OUTPUT_LOCATION="$(dirname "$0")/service/src/main/resources/rendered"
INTEGRATION_OUTPUT_LOCATION="$(dirname "$0")/integration/src/main/resources/rendered"
if ! [ -x "$(command -v vault)" ]; then
VAULT_COMMAND="docker run --rm -e VAULT_TOKEN=$VAULT_TOKEN -e VAULT_ADDR=$VAULT_ADDR vault:1.7.3 $VAULT_COMMAND"
fi
$VAULT_COMMAND -field=value "$DRSHUB_VAULT_PATH/ras-mtls-client.crt" >"$SERVICE_OUTPUT_LOCATION/ras-mtls-client.crt"
$VAULT_COMMAND -field=value "$DRSHUB_VAULT_PATH/ras-mtls-client.key" >"$SERVICE_OUTPUT_LOCATION/ras-mtls-client.key"
$VAULT_COMMAND -field=swagger-client-id "$DRSHUB_VAULT_PATH/swagger-client-id" >"$SERVICE_OUTPUT_LOCATION/swagger-client-id"
$VAULT_COMMAND -field=data -format=json "secret/dsde/firecloud/$ENV/common/firecloud-account.json" >"$INTEGRATION_OUTPUT_LOCATION/user-delegated-sa.json"
if [ $ENV == perf ]; then
$VAULT_COMMAND -field=key "$COMMON_VAULT_PATH/testrunner/testrunner-sa" | base64 -d > "$INTEGRATION_OUTPUT_LOCATION/testrunner-sa.json"
fi