ops/vault/reissue-secret-id: don't fail on systems with no pre-existing secrets
This commit is contained in:
parent
60e6ae8af5
commit
8b9c3494ff
1 changed files with 1 additions and 1 deletions
|
@ -14,7 +14,7 @@ echo Destroying existing secrets for that server... >&2
|
|||
vault list -format=json "auth/approle/role/${server_name}/secret-id" | jq -r '.[]' | while read -r secret_id_accessor; do
|
||||
echo -ne "\t$secret_id_accessor\n"
|
||||
vault write "auth/approle/role/${server_name}/secret-id-accessor/destroy" secret_id_accessor="${secret_id_accessor}"
|
||||
done
|
||||
done || true
|
||||
|
||||
echo Creating new secret... >&2
|
||||
vault write -f -format=json -wrap-ttl=3m "auth/approle/role/${server_name}/secret-id" | jq -r '.wrap_info.token'
|
||||
|
|
Loading…
Reference in a new issue