105 lines
4.7 KiB
Bash
Executable File
105 lines
4.7 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
|
|
kubectl --namespace=velero delete secret velero --ignore-not-found
|
|
## we do this so helm can adopt our pre-made secret @see https://github.com/helm/helm/pull/7649
|
|
cat <<EOF | kubectl --namespace=velero create -f-
|
|
---
|
|
apiVersion: v1
|
|
kind: Secret
|
|
metadata:
|
|
name: velero
|
|
namespace: velero
|
|
annotations:
|
|
meta.helm.sh/release-namespace: futureporn
|
|
labels:
|
|
app.kubernetes.io/managed-by: Helm
|
|
type: Opaque
|
|
data:
|
|
aws_access_key_id: $(echo -n $VELERO_S3_KEY_ID | base64)
|
|
aws_secret_access_key: $(echo -n $VELERO_S3_ACCESS_KEY | base64)
|
|
EOF
|
|
|
|
# kubectl --namespace futureporn delete secret traefik --ignore-not-found
|
|
# kubectl --namespace futureporn create secret generic traefik \
|
|
# --from-literal=username=${TRAEFIK_USERNAME} \
|
|
# --from-literal=password=${TRAEFIK_PASSWORD}
|
|
|
|
kubectl --namespace cert-manager delete secret exoscale --ignore-not-found
|
|
kubectl --namespace cert-manager create secret generic exoscale \
|
|
--from-literal=apiKey=${EXOSCALE_API_KEY} \
|
|
--from-literal=apiSecret=${EXOSCALE_API_SECRET}
|
|
|
|
kubectl --namespace futureporn delete secret grafana --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic grafana \
|
|
--from-literal=admin-user=${GRAFANA_USERNAME} \
|
|
--from-literal=admin-password=${GRAFANA_PASSWORD}
|
|
|
|
kubectl --namespace futureporn delete secret frp --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic frp \
|
|
--from-literal=token=${FRP_TOKEN}
|
|
|
|
kubectl --namespace futureporn delete secret chisel --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic chisel \
|
|
--from-literal=auth=${CHISEL_USERNAME}:${CHISEL_PASSWORD}
|
|
|
|
kubectl --namespace futureporn delete secret scout --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic scout \
|
|
--from-literal=recentsToken=${SCOUT_RECENTS_TOKEN} \
|
|
--from-literal=strapiApiKey=${SCOUT_STRAPI_API_KEY} \
|
|
--from-literal=imapServer=${SCOUT_IMAP_SERVER} \
|
|
--from-literal=imapPort=${SCOUT_IMAP_PORT} \
|
|
--from-literal=imapUsername=${SCOUT_IMAP_USERNAME} \
|
|
--from-literal=imapPassword=${SCOUT_IMAP_PASSWORD} \
|
|
--from-literal=imapAccessToken=${SCOUT_IMAP_ACCESS_TOKEN} \
|
|
--from-literal=nitterAccessKey=${SCOUT_NITTER_ACCESS_KEY} \
|
|
--from-literal=s3BucketKeyId=${S3_BUCKET_KEY_ID} \
|
|
--from-literal=s3BucketApplicationKey=${S3_BUCKET_APPLICATION_KEY}
|
|
|
|
kubectl --namespace futureporn delete secret link2cid --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic link2cid \
|
|
--from-literal=apiKey=${LINK2CID_API_KEY}
|
|
|
|
kubectl --namespace cert-manager delete secret vultr --ignore-not-found
|
|
kubectl --namespace cert-manager create secret generic vultr \
|
|
--from-literal=apiKey=${VULTR_API_KEY}
|
|
|
|
kubectl --namespace futureporn delete secret vultr --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic vultr \
|
|
--from-literal=containerRegistryUsername=${VULTR_CONTAINER_REGISTRY_USERNAME} \
|
|
--from-literal=apiKey=${VULTR_API_KEY}
|
|
|
|
kubectl --namespace futureporn delete secret postgres --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic postgres \
|
|
--from-literal=password=${POSTGRES_PASSWORD}
|
|
|
|
kubectl --namespace futureporn delete secret pgadmin --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic pgadmin \
|
|
--from-literal=defaultEmail=${PGADMIN_DEFAULT_EMAIL} \
|
|
--from-literal=defaultPassword=${PGADMIN_DEFAULT_PASSWORD}
|
|
|
|
kubectl --namespace futureporn delete secret strapi --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic strapi \
|
|
--from-literal=adminJwtSecret=${STRAPI_ADMIN_JWT_SECRET} \
|
|
--from-literal=apiTokenSalt=${STRAPI_API_TOKEN_SALT} \
|
|
--from-literal=appKeys=${STRAPI_APP_KEYS} \
|
|
--from-literal=databaseUrl=postgres.futureporn.svc.cluster.local://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${POSTGRES_HOST}:${POSTGRES_PORT}/${POSTGRES_DB} \
|
|
--from-literal=jwtSecret=${STRAPI_JWT_SECRET} \
|
|
--from-literal=muxPlaybackRestrictionId=${MUX_PLAYBACK_RESTRICTION_ID} \
|
|
--from-literal=muxSigningKeyPrivateKey=${MUX_SIGNING_KEY_PRIVATE_KEY} \
|
|
--from-literal=s3UscBucketApplicationKey=${S3_USC_BUCKET_APPLICATION_KEY} \
|
|
--from-literal=s3UscBucketEndpoint=${S3_USC_BUCKET_ENDPOINT} \
|
|
--from-literal=s3UscBucketName=${S3_USC_BUCKET_NAME} \
|
|
--from-literal=s3UscBucketKeyId=${S3_USC_BUCKET_KEY_ID} \
|
|
--from-literal=s3UscBucketRegion=${S3_USC_BUCKET_REGION} \
|
|
--from-literal=muxSigningKeyId=${MUX_SIGNING_KEY_ID} \
|
|
--from-literal=strapiAdminEmail=${STRAPI_ADMIN_EMAIL} \
|
|
--from-literal=sendgridApiKey=${SENDGRID_API_KEY} \
|
|
--from-literal=cdnBucketUscUrl=${CDN_BUCKET_USC_URL} \
|
|
--from-literal=transferTokenSalt=${TRANSFER_TOKEN_SALT}
|
|
|
|
kubectl --namespace futureporn delete secret realtime --ignore-not-found
|
|
kubectl --namespace futureporn create secret generic realtime \
|
|
--from-literal=postgresRealtimeConnectionString=${POSTGRES_REALTIME_CONNECTION_STRING}
|
|
|