/
local_dev.sh
executable file
·67 lines (51 loc) · 1.47 KB
/
local_dev.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
#!/usr/bin/env bash
set -ex
MNT_PATH="database"
PLUGIN_NAME="vault-plugin-database-clickhouse"
PLUGIN_CATALOG_NAME="vault-plugin-database-clickhouse"
#
# Helper script for local development. Automatically builds and registers the
# plugin. Requires `vault` is installed and available on $PATH.
#
# Get the right dir
DIR="$(cd "$(dirname "$(readlink "$0")")" && pwd)"
echo "==> Starting dev"
echo "--> Scratch dir"
echo " Creating"
SCRATCH="$DIR/tmp"
mkdir -p "$SCRATCH/plugins"
echo "--> Vault server"
echo " Envvars"
export VAULT_DEV_ROOT_TOKEN_ID="root"
export VAULT_ADDR="http://127.0.0.1:8200"
echo " Starting"
vault server \
-dev \
-log-level="debug" \
-dev-plugin-dir="$SCRATCH/plugins" \
-dev-ha -dev-transactional -dev-root-token-id=root \
&
VAULT_PID=$!
sleep 2
function cleanup {
echo ""
echo "==> Cleaning up"
kill -INT "$VAULT_PID"
rm -rf "$SCRATCH"
}
trap cleanup EXIT
echo " Authing"
vault login root &>/dev/null
echo "--> Building"
go build -o "$SCRATCH/plugins/$PLUGIN_NAME" "$DIR/cmd/$PLUGIN_NAME"
SHASUM=$(shasum -a 256 "$SCRATCH/plugins/$PLUGIN_NAME" | cut -d " " -f1)
echo " Registering plugin"
vault write sys/plugins/catalog/database/$PLUGIN_CATALOG_NAME \
sha_256="$SHASUM" \
command="$PLUGIN_NAME"
echo " Predefine vault policies"
vault write sys/policies/password/clickhouse-password-policy policy=@$DIR/scripts/clickhouse-policy-password.hcl
echo " Mounting plugin"
vault secrets enable database
echo "==> Ready!"
wait $!