Use variables in scripts to ease secret externalisation (!167) · Merge requests · EOLE / Eole 3 / Tools

Frédéric Lespez requested to merge frederic.lespez/tools:ease_secrets_externalisation into dev Nov 30, 2022

Use variables for all templated values (just like in templates/scripts/init-keycloak file).

I will also open the possible externalisation of secrets management. Indeed, it would be easy to replace all lines defining a variable with a hardcoded secret by a call to an external tools that will provide the secret at runtime.

For example, replacing:

clientSecret="mybestsecret"

clientSecret=$(get_secret_for(nextcloud, keycloackSecret))

Use variables in scripts to ease secret externalisation

Merge request reports