12 lines
595 B
Bash
12 lines
595 B
Bash
#!/bin/bash
|
|
|
|
# This grabs the encrypted credentials file and decrypts it.
|
|
|
|
aws --profile ${AWS_PROFILE} --region ${AWS_REGION} s3 cp s3://${AWS_S3_BUCKET}/vault_creds_encrypted ./temp/vault_creds_encrypted
|
|
aws --profile ${AWS_PROFILE} --region ${AWS_REGION} kms decrypt --key-id ${AWS_KMS_KEY_ID} --ciphertext-blob fileb://temp/vault_creds_encrypted --output text --query Plaintext | base64 --decode > ./temp/vault_creds_decrypted
|
|
|
|
echo ""
|
|
echo "Vault crednetials decrypted. Find them at ./temp/vault_creds_decrypted"
|
|
echo "----"
|
|
echo "Load Balancer DNS Name: ${LOAD_BALANCER_DNS_NAME}"
|
|
echo "" |