consul-demo

initialize-acl.sh
42 строки · 3.5 Кб
Перенос по словам
1
#!/bin/bash
2

3
cd ~/acl/
4

5
consul acl bootstrap > consul.secret
6
cat ./consul.secret | grep SecretID | awk -F":" '{ print $2 }' | xargs > admin.token
7

8
cd policy
9

10
consul acl policy create -token-file ../admin.token -name "consul-template-deduplicate-kv-policy" -description "" -rules @consul-template-deduplicate-kv-policy.hcl
11
consul acl policy create -token-file ../admin.token -name "loadbalancer-discovery-policy" -description "" -rules @loadbalancer-discovery-policy.hcl
12
consul acl policy create -token-file ../admin.token -name "loadbalancer-vk-props-policy" -description "" -rules @loadbalancer-vk-props-policy.hcl
13
consul acl policy create -token-file ../admin.token -name "service-discovery-policy" -description "" -rules @service-discovery-policy.hcl
14
consul acl policy create -token-file ../admin.token -name "service-kv-policy" -description "" -rules @service-kv-policy.hcl
15

16
consul acl policy create -token-file ../admin.token -name "gateway-discovery-policy" -description "" -rules @gateway-discovery-policy.hcl
17
consul acl policy create -token-file ../admin.token -name "gateway-kv-policy" -description "" -rules @gateway-kv-policy.hcl 
18

19
consul acl policy create -token-file ../admin.token -name "gateway-isolated-discovery-policy" -description "" -rules @gateway-isolated-discovery-policy.hcl
20
consul acl policy create -token-file ../admin.token -name "gateway-isolated-kv-policy" -description "" -rules @gateway-isolated-kv-policy.hcl
21

22
consul acl policy create -token-file ../admin.token -name "sec-policy" -description "" -rules @sec-policy.hcl
23

24
cd ..
25

26
consul acl role create -token-file ./admin.token -name "load-balancer-role" -description "" -policy-name "consul-template-deduplicate-kv-policy" -policy-name "loadbalancer-discovery-policy" -policy-name "loadbalancer-vk-props-policy"
27
consul acl role create -token-file ./admin.token -name "gateway-component-role" -description "" -policy-name "gateway-discovery-policy" -policy-name "gateway-kv-policy"
28
consul acl role create -token-file ./admin.token -name "gateway-isolated-component-role" -description "" -policy-name "gateway-isolated-discovery-policy" -policy-name "gateway-isolated-kv-policy"
29
consul acl role create -token-file ./admin.token -name "srv-component-role" -description "" -policy-name "service-discovery-policy" -policy-name "service-kv-policy"
30
consul acl role create -token-file ./admin.token -name "sec-role" -description "" -policy-name "sec-policy"
31

32
consul acl token create -token-file ./admin.token -description "token for loadbalancer" -role-name "load-balancer-role" > loadbalancer.token.output
33
consul acl token create -token-file ./admin.token -description "token for gateway" -role-name "gateway-component-role" > gateway.token.output
34
consul acl token create -token-file ./admin.token -description "token for gateway-isolated" -role-name "gateway-isolated-component-role" > gateway-isolated.token.output
35
consul acl token create -token-file ./admin.token -description "token for service" -role-name "srv-component-role" > srv.token.output
36
consul acl token create -token-file ./admin.token -description "token sec team" -role-name "sec-role" > sec.token.output
37

38
cat ./loadbalancer.token.output | grep SecretID | awk -F":" '{ print $2 }' | xargs > loadbalancer.token
39
cat ./gateway.token.output | grep SecretID | awk -F":" '{ print $2 }' | xargs > gateway.token
40
cat ./gateway-isolated.token.output | grep SecretID | awk -F":" '{ print $2 }' | xargs > gateway-isolated.token
41
cat ./srv.token.output | grep SecretID | awk -F":" '{ print $2 }' | xargs > srv.token
42
cat ./sec.token.output | grep SecretID | awk -F":" '{ print $2 }' | xargs > sec.token
43
consul-demo

Использование cookies
