Let's add the creds to override.conf, actually. And it is safe to run systemd-creds setup, since it doesn't rewrite an existing key.
This commit is contained in:
parent
705a4ede76
commit
cf7e240e8a
@ -5,11 +5,20 @@ if [[ $EUID -ne 0 ]]; then
|
|||||||
exit 1
|
exit 1
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
# It will create a new encription key if it doesn't exists.
|
||||||
|
systemd-creds setup
|
||||||
|
|
||||||
if [[ $1 ]]; then
|
if [[ $1 ]]; then
|
||||||
char_num=$1;
|
char_num=$1;
|
||||||
else
|
else
|
||||||
char_num=64;
|
char_num=64;
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
service_override=$(pkg-config systemd --variable=systemdsystemconfdir)/dwelling-upload.service.d/override.conf
|
||||||
|
|
||||||
|
if [ ! -f $service_override ]; then
|
||||||
|
echo "[Service]" > $service_override;
|
||||||
|
fi
|
||||||
|
|
||||||
cat /dev/urandom | tr -dc 'a-zA-Z0-9!@#$%^&*' | fold -w $char_num | head -n 1 \
|
cat /dev/urandom | tr -dc 'a-zA-Z0-9!@#$%^&*' | fold -w $char_num | head -n 1 \
|
||||||
| systemd-creds encrypt -qp --name=salt - - 2> /dev/null
|
| systemd-creds encrypt -qp --name=salt - - 2> /dev/null >> $service_override;
|
Loading…
Reference in New Issue
Block a user