mirror of
https://github.com/yavook/kiwi-backup.git
synced 2024-11-21 22:43:01 +00:00
secrets handling
This commit is contained in:
parent
55227ec38c
commit
a87cf3120b
1 changed files with 23 additions and 11 deletions
34
do-plicity
34
do-plicity
|
|
@ -5,21 +5,40 @@
|
|||
#############
|
||||
|
||||
# commands
|
||||
env_exe="$(command -v env)"
|
||||
ionice_exe="$(command -v ionice)"
|
||||
duplicity_exe="$(command -v duplicity)"
|
||||
|
||||
# files
|
||||
duplicity_secrets_file='/root/duplicity_secrets'
|
||||
|
||||
###############
|
||||
# ENVIRONMENT #
|
||||
###############
|
||||
|
||||
# load secrets file
|
||||
if [ -f "${duplicity_secrets_file}" ]; then
|
||||
# shellcheck disable=SC1090
|
||||
. "${duplicity_secrets_file}"
|
||||
fi
|
||||
|
||||
# check if uses encryption
|
||||
if [ -n "${GPG_KEY_ID}" ]; then
|
||||
# gpg key given
|
||||
env_changes="PASSPHRASE='${GPG_PASSPHRASE}'"
|
||||
PASSPHRASE="${GPG_PASSPHRASE}"
|
||||
export PASSPHRASE
|
||||
encrypt_opts="--encrypt-key='${GPG_KEY_ID}'"
|
||||
else
|
||||
# no key given
|
||||
env_changes=""
|
||||
encrypt_opts="--no-encryption"
|
||||
fi
|
||||
|
||||
# check if uses AWS
|
||||
if [ -n "${AWS_ACCESS_KEY_ID}" ]; then
|
||||
# export AWS credentials
|
||||
export AWS_ACCESS_KEY_ID
|
||||
export AWS_SECRET_ACCESS_KEY
|
||||
fi
|
||||
|
||||
#############
|
||||
# FUNCTIONS #
|
||||
#############
|
||||
|
|
@ -46,14 +65,7 @@ print_command() {
|
|||
pc_task="${1}"
|
||||
shift 1
|
||||
|
||||
# if environment should be changed, call with "env"
|
||||
if [ -n "${env_changes}" ]; then
|
||||
pc_cmdline="${env_exe} ${env_changes} "
|
||||
else
|
||||
pc_cmdline=""
|
||||
fi
|
||||
|
||||
pc_cmdline="${pc_cmdline}${ionice_exe} -c 3 ${duplicity_exe} ${encrypt_opts}"
|
||||
pc_cmdline="${ionice_exe} -c 3 ${duplicity_exe} ${encrypt_opts}"
|
||||
|
||||
case "${pc_task}" in
|
||||
backup)
|
||||
|
|
|
|||
Loading…
Reference in a new issue