2024-12-22 05:08:23 +00:00
|
|
|
#!/bin/bash -e
|
|
|
|
|
|
|
|
function get_token() {
|
|
|
|
kubectl exec app-0 -- gitea admin user generate-access-token \
|
2024-12-22 06:15:20 +00:00
|
|
|
--username "$name" \
|
|
|
|
--token-name "${name^^}" \
|
2024-12-22 05:08:23 +00:00
|
|
|
--scopes "$scopes" \
|
|
|
|
| awk '{print $NF}'
|
|
|
|
}
|
|
|
|
|
2024-12-22 06:15:20 +00:00
|
|
|
name="$1"
|
2024-12-22 05:08:23 +00:00
|
|
|
scopes="$2"
|
2024-12-22 06:15:20 +00:00
|
|
|
email="$name@$BASE_URL"
|
|
|
|
secret="gitea-$name"
|
2024-12-22 05:08:23 +00:00
|
|
|
|
2024-12-22 06:15:20 +00:00
|
|
|
if ! kubectl get secret "$secret" > /dev/null 2>&1; then
|
|
|
|
kcreatesec "$secret" \
|
|
|
|
--from-literal=email="$email" \
|
|
|
|
--from-literal=username="$name" \
|
|
|
|
--from-literal=password="$(openssl rand -hex 32)"
|
2024-12-22 06:23:58 +00:00
|
|
|
NAME="$name" SECRET="$secret" kapply common/createadmin.yaml
|
2024-12-22 05:08:23 +00:00
|
|
|
fi
|
|
|
|
|
|
|
|
if [ -n "$scopes" ]; then
|
2024-12-22 06:15:20 +00:00
|
|
|
kcreatesec "$secret" \
|
|
|
|
--from-literal=email="$email" \
|
|
|
|
--from-literal=username="$name" \
|
|
|
|
--from-literal=password="$(kgseckey "$secret" password)" \
|
|
|
|
--from-literal=token="$(kgseckey "$secret" token || get_token)"
|
2024-12-22 05:08:23 +00:00
|
|
|
fi
|