51 lines
No EOL
2 KiB
YAML
51 lines
No EOL
2 KiB
YAML
server:
|
|
extraContainers:
|
|
- name: grafana-alloy
|
|
image: grafana/alloy:latest
|
|
command: ["/bin/sh", "-c", "while [ -f /openbao/logs/alive/main.alive ]; do sleep 5; done; echo 'Main container exited, waiting 20s'; sleep 20; exit 1"]
|
|
ports:
|
|
- containerPort: 12345
|
|
securityContext:
|
|
runAsUser: 100
|
|
volumeMounts:
|
|
- name: log-storage
|
|
mountPath: /openbao/logs
|
|
- name: alloy-data
|
|
mountPath: /var/lib/alloy
|
|
- name: config-volume
|
|
mountPath: /etc/alloy
|
|
|
|
volumes:
|
|
- name: log-storage
|
|
emptyDir: {}
|
|
- name: alloy-data
|
|
emptyDir: {}
|
|
- name: config-volume
|
|
configMap:
|
|
name: sidecar-container-alloy-config
|
|
|
|
volumeMounts:
|
|
- mountPath: /openbao/logs
|
|
name: log-storage
|
|
readOnly: false
|
|
|
|
postStart:
|
|
- sh
|
|
- -c
|
|
- |
|
|
trap 'rm -f /openbao/logs/alive/main.alive; exit 0' TERM; touch /openbao/logs/alive/main.alive; sleep infinity
|
|
sleep 10
|
|
bao operator init >> /tmp/init.txt
|
|
cat /tmp/init.txt | grep "Key " | awk '{print $NF}' | xargs -I{} bao operator unseal {}
|
|
echo $(grep "Initial Root Token:" /tmp/init.txt | awk '{print $NF}')| cat > /openbao/data/initial_token.txt
|
|
echo $(grep "Unseal Key 1:" /tmp/init.txt | awk '{print $NF}')| cat > /openbao/data/unseal_key1.txt
|
|
echo $(grep "Unseal Key 2:" /tmp/init.txt | awk '{print $NF}')| cat > /openbao/data/unseal_key2.txt
|
|
echo $(grep "Unseal Key 3:" /tmp/init.txt | awk '{print $NF}')| cat > /openbao/data/unseal_key3.txt
|
|
echo $(grep "Unseal Key 4:" /tmp/init.txt | awk '{print $NF}')| cat > /openbao/data/unseal_key4.txt
|
|
echo $(grep "Unseal Key 5:" /tmp/init.txt | awk '{print $NF}')| cat > /openbao/data/unseal_key5.txt
|
|
bao login $(grep "Initial Root Token:" /tmp/init.txt | awk '{print $NF}')
|
|
rm /tmp/init.txt
|
|
bao audit enable -path="stdout" file file_path=stdout
|
|
bao audit enable -path="file" file file_path=/openbao/logs/openbao.log
|
|
ui:
|
|
enabled: true |