heroes / salt

Clone
Source Code
GIT

Files

adjust-ci-pipeline anikitin/mirrorcache anikitin/t_allow_jinja_in_secrets anikitin/web_mirrors__proxy_mirrorcache bootloader cboltz-borgbackup cboltz-relnotes-15.3 cboltz-scar-sshd doc-o-o gateway hellcp/matrix-synapse-workers-syntax hellcp/paste-sync ifconfig infra libvirt lrupp-production-patch-08358 lrupp/add_identification lrupp/remove_login_interface lrupp/retire lrupp/serve_www mailman micro monitoring-restart paste-socket postfix-aliases production repositories set-secret-detection-config-1 sysctl update-access-crtmgr
  1.   production
  2.   bin
  3.   replace_secrets.sh
Blob Blame History Raw 
#!/usr/bin/env sh
# This will replace all PGP messages in the pillar with the value defined as $substitute. This is handy to avoid "Could not decrypt" errors during local testing.
# Georg Pfuetzenreuter <georg.pfuetzenreuter@suse.com>

substitute="SUBSTITUTED"
searchpath="pillar/secrets/"

find "$searchpath" -type f -name '*.sls' -execdir \
	gawk -i inplace -v subst="$substitute" \
	'{if (FNR==1 && !/#!yaml\|gpg/ && !/#!gpg\|yaml/ && !/#!jinja\|yaml\|gpg/ && !/# empty/){ nextfile }}; !/\|$/{ORS="\n"}; /\|$/{ORS=""; gsub(/\|$/, "")}; /BEGIN PGP MESSAGE/{f=1} !f; /END PGP MESSAGE/{f=0; printf "%s\n", subst};' \
	{} +
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.