From 23e08b5f26401034f5bd819678177a0bc397492a Mon Sep 17 00:00:00 2001 From: tremor021 Date: Thu, 30 Oct 2025 11:12:40 +0100 Subject: [PATCH] Update Infisical --- ct/{infiscal.sh => infisical.sh} | 0 install/infiscal-install.sh | 0 install/infisical-install.sh | 72 ++++++++++++++++++++++++++++++++ 3 files changed, 72 insertions(+) rename ct/{infiscal.sh => infisical.sh} (100%) delete mode 100644 install/infiscal-install.sh create mode 100644 install/infisical-install.sh diff --git a/ct/infiscal.sh b/ct/infisical.sh similarity index 100% rename from ct/infiscal.sh rename to ct/infisical.sh diff --git a/install/infiscal-install.sh b/install/infiscal-install.sh deleted file mode 100644 index e69de29bb..000000000 diff --git a/install/infisical-install.sh b/install/infisical-install.sh new file mode 100644 index 000000000..92467fb64 --- /dev/null +++ b/install/infisical-install.sh @@ -0,0 +1,72 @@ +#!/usr/bin/env bash + +# Copyright (c) 2021-2025 community-scripts ORG +# Author: Slaviša Arežina (tremor021) +# License: MIT | https://github.com/community-scripts/ProxmoxVED/raw/main/LICENSE +# Source: https://infisical.com/ + +source /dev/stdin <<<"$FUNCTIONS_FILE_PATH" +color +verb_ip6 +catch_errors +setting_up_container +network_check +update_os + +msg_info "Installing Dependencies" +$STD apt install -y \ + apt-transport-https \ + ca-certificates +msg_ok "Installed Dependencies" + +msg_info "Setting up Infisical repository" +curl -fsSL "https://artifacts-infisical-core.infisical.com/infisical.gpg" | gpg --dearmor >/etc/apt/trusted.gpg.d/infisical.gpg +cat </etc/apt/sources.list.d/infisical.sources +Types: deb +URIs: https://artifacts-infisical-core.infisical.com/deb +Suites: stable +Components: main +Signed-By: /etc/apt/trusted.gpg.d/infisical.gpg +EOF +msg_ok "Setup Infisical repository" + +PG_VERSION="17" setup_postgresql + +msg_info "Setting up PostgreSQL" +DB_NAME="infiscal_db" +DB_USER="infiscal" +DB_PASS="$(openssl rand -base64 18 | tr -dc 'a-zA-Z0-9' | cut -c1-13)" +$STD sudo -u postgres psql -c "CREATE ROLE $DB_USER WITH LOGIN PASSWORD '$DB_PASS';" +$STD sudo -u postgres psql -c "CREATE DATABASE $DB_NAME WITH OWNER $DB_USER ENCODING 'UTF8' TEMPLATE template0;" +$STD sudo -u postgres psql -c "ALTER ROLE $DB_USER SET client_encoding TO 'utf8';" +$STD sudo -u postgres psql -c "ALTER ROLE $DB_USER SET default_transaction_isolation TO 'read committed';" +$STD sudo -u postgres psql -c "ALTER ROLE $DB_USER SET timezone TO 'UTC';" +{ + echo "Infiscal Credentials" + echo "Database Name: $DB_NAME" + echo "Database User: $DB_USER" + echo "Database Password: $DB_PASS" +} >>~/infiscal.creds +msg_ok "Setup PostgreSQL" + +msg_info "Setting up Infisical" +$STD apt install -y infisical-core +mkdir -p /etc/infisical +cat </etc/infisical/infisical.rb +infisical_core['ENCRYPTION_KEY'] = '6c1fe4e407b8911c104518103505b218' +infisical_core['AUTH_SECRET'] = '5lrMXKKWCVocS/uerPsl7V+TX/aaUaI7iDkgl3tSmLE=' + +infisical_core['DB_CONNECTION_URI'] = 'postgres://${DB_USER}:${DB_PASS}@localhost:5432/${DB_NAME}' +infisical_core['REDIS_URL'] = 'redis://localhost:6379' +EOF +$STD infisical-ctl reconfigure +msg_ok "Setup Infisical" + +motd_ssh +customize + +msg_info "Cleaning up" +$STD apt -y autoremove +$STD apt -y autoclean +$STD apt -y clean +msg_ok "Cleaned"