-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy path1_instal_conjur.sh
executable file
·35 lines (26 loc) · 1.19 KB
/
1_instal_conjur.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
#!/bin/bash
set -euo pipefail
## installing using helm
##
##creating namespace
if ! kubectl get namespace $CONJUR_NAMESPACE > /dev/null
then
kubectl create namespace "$CONJUR_NAMESPACE"
fi
helm init
kubectl create serviceaccount --namespace kube-system tiller
kubectl create clusterrolebinding tiller-cluster-rule --clusterrole=cluster-admin --serviceaccount=kube-system:tiller
helm init --service-account tiller --upgrade
helm repo add cyberark https://cyberark.github.io/helm-charts
helm repo update
sleep 5
helm install cyberark/conjur-oss \
--set ssl.hostname=$CONJUR_HOSTNAME_SSL,dataKey="$(docker run --rm cyberark/conjur data-key generate)",authenticators="authn-k8s/dev\,authn" \
--namespace "$CONJUR_NAMESPACE" \
--name "$CONJUR_APP_NAME"
#helm install cyberark/conjur-oss \
# --set ssl.hostname=$CONJUR_HOSTNAME_SSL,dataKey="$(docker run --rm cyberark/conjur data-key generate)",authenticators="authn-k8s/dev\,authn",serviceAccount.name=$CONJUR_SERVICEACCOUNT_NAME,serviceAccount.create=false \
# --namespace "$CONJUR_NAMESPACE" \
# --name "$CONJUR_APP_NAME"
echo "press crtl-c when the External IP appears... "
kubectl get svc -w conjur-oss-ingress -n $CONJUR_NAMESPACE