Added loading unseal keys on restart
All checks were successful
Build and deploy Bridgeman Accessible Hashicorp Vault Implementation / deploy (push) Successful in 15s
All checks were successful
Build and deploy Bridgeman Accessible Hashicorp Vault Implementation / deploy (push) Successful in 15s
This commit is contained in:
Alan Bridgeman
parent
3e1cf563a8
commit
d7f4a94362
1 changed files with 10 additions and 0 deletions
|
|
@ -192,6 +192,16 @@ def main():
|
|||
else:
|
||||
print('Vault is already initialized. Skipping initialization and setup...')
|
||||
|
||||
if os.path.exists('/vault/creds/unseal-keys'):
|
||||
unseal_keys = []
|
||||
|
||||
with open('/vault/creds/unseal-keys', 'r') as f:
|
||||
unseal_keys = f.read().splitlines()
|
||||
|
||||
initializer.unseal_keys = unseal_keys
|
||||
else:
|
||||
raise RuntimeError('Unseal keys file is missing. Cannot unseal the vault.')
|
||||
|
||||
# Check if the vault is already unsealed (we assume it's already setup properly if it is)
|
||||
if initializer.is_vault_sealed():
|
||||
initializer.unseal_vault()
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue