|
|
|
@ -72,7 +72,7 @@ function fn_extract_uid(){
|
|
|
|
echo "${uid}"
|
|
|
|
echo "${uid}"
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function fn_update_sops_config(){
|
|
|
|
function fn_generate_sops_config(){
|
|
|
|
# sops.yaml doc: https://github.com/getsops/sops?tab=readme-ov-file#using-sops-yaml-conf-to-select-kms-pgp-and-age-for-new-files
|
|
|
|
# sops.yaml doc: https://github.com/getsops/sops?tab=readme-ov-file#using-sops-yaml-conf-to-select-kms-pgp-and-age-for-new-files
|
|
|
|
# CAVEAT: dirty hacks, as DRY as feasible within bash
|
|
|
|
# CAVEAT: dirty hacks, as DRY as feasible within bash
|
|
|
|
|
|
|
|
|
|
|
|
@ -132,7 +132,7 @@ fi
|
|
|
|
# UPDATE SOPS CONFIG
|
|
|
|
# UPDATE SOPS CONFIG
|
|
|
|
# TODO: remove the 'pushd;popd' workaround and make the functions aware of the dir being read
|
|
|
|
# TODO: remove the 'pushd;popd' workaround and make the functions aware of the dir being read
|
|
|
|
pushd "${keyfiles_dir}" > /dev/null 2>&1
|
|
|
|
pushd "${keyfiles_dir}" > /dev/null 2>&1
|
|
|
|
(fn_update_sops_config) > "${sops_config}"
|
|
|
|
(fn_generate_sops_config) > "${sops_config}"
|
|
|
|
popd > /dev/null 2>&1
|
|
|
|
popd > /dev/null 2>&1
|
|
|
|
|
|
|
|
|
|
|
|
# VERIFY
|
|
|
|
# VERIFY
|
|
|
|
|
LeeW
11 months ago