From f57fd4c5c2d81a61b22ed865ce649349b5992e12 Mon Sep 17 00:00:00 2001
From: ace <ace@0xace.cc>
Date: Thu, 10 Apr 2025 00:22:38 +0300
Subject: [PATCH] add autovault container

---
 autovault/Dockerfile      |  8 ++++++++
 autovault/Makefile        | 22 ++++++++++++++++++++++
 autovault/hashicorp.repo  | 13 +++++++++++++
 autovault/kubernetes.repo |  6 ++++++
 4 files changed, 49 insertions(+)
 create mode 100644 autovault/Dockerfile
 create mode 100644 autovault/Makefile
 create mode 100644 autovault/hashicorp.repo
 create mode 100644 autovault/kubernetes.repo

diff --git a/autovault/Dockerfile b/autovault/Dockerfile
new file mode 100644
index 0000000..9e8cb8d
--- /dev/null
+++ b/autovault/Dockerfile
@@ -0,0 +1,8 @@
+FROM almalinux:9
+
+COPY *.repo /etc/yum.repos.d/
+
+RUN dnf install -y kubectl vault jq && dnf clean all
+RUN setcap -r /usr/bin/vault
+
+ENTRYPOINT ["/vault/scripts/autovault.sh"]
diff --git a/autovault/Makefile b/autovault/Makefile
new file mode 100644
index 0000000..52518d4
--- /dev/null
+++ b/autovault/Makefile
@@ -0,0 +1,22 @@
+VERSION=0.1.0
+BUILD=1
+IMAGE=autovault
+REGISTRY=gitea.geekhome.org/ghp
+
+.PHONY: build push all
+
+ifeq ($(shell command -v podman 2> /dev/null),)
+    CMD=docker
+    FORMAT=
+else
+    CMD=podman
+    FORMAT=--format docker
+endif
+
+build:
+	$(CMD) build $(NO_CACHE) $(FORMAT) -t $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD) .
+
+push:
+	$(CMD) push $(REGISTRY)/$(IMAGE):$(VERSION)-$(BUILD)
+
+all: build push
diff --git a/autovault/hashicorp.repo b/autovault/hashicorp.repo
new file mode 100644
index 0000000..815643b
--- /dev/null
+++ b/autovault/hashicorp.repo
@@ -0,0 +1,13 @@
+[hashicorp]
+name=Hashicorp Stable - $basearch
+baseurl=https://rpm.releases.hashicorp.com/RHEL/$releasever/$basearch/stable
+enabled=1
+gpgcheck=1
+gpgkey=https://rpm.releases.hashicorp.com/gpg
+
+[hashicorp-test]
+name=Hashicorp Test - $basearch
+baseurl=https://rpm.releases.hashicorp.com/RHEL/$releasever/$basearch/test
+enabled=0
+gpgcheck=1
+gpgkey=https://rpm.releases.hashicorp.com/gpg
diff --git a/autovault/kubernetes.repo b/autovault/kubernetes.repo
new file mode 100644
index 0000000..20d610f
--- /dev/null
+++ b/autovault/kubernetes.repo
@@ -0,0 +1,6 @@
+[kubernetes]
+name=Kubernetes
+baseurl=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/
+enabled=1
+gpgcheck=1
+gpgkey=https://pkgs.k8s.io/core:/stable:/v1.32/rpm/repodata/repomd.xml.key