diff --git a/lib/functions.sh b/lib/functions.sh index 1ea77d7..f1e3c29 100644 --- a/lib/functions.sh +++ b/lib/functions.sh @@ -302,20 +302,20 @@ function sync_secrets() { fi mkdir -p /var/cache/bridgehead/secrets/ || fail_and_report 1 "Failed to create '/var/cache/bridgehead/secrets/'. Please run sudo './bridgehead install $PROJECT' again." touch /var/cache/bridgehead/secrets/oidc - docker run --rm \ - -v /var/cache/bridgehead/secrets/oidc:/usr/local/cache \ - -v $PRIVATEKEYFILENAME:/run/secrets/privkey.pem:ro \ - -v /srv/docker/bridgehead/$PROJECT/root.crt.pem:/run/secrets/root.crt.pem:ro \ - -v /etc/bridgehead/trusted-ca-certs:/conf/trusted-ca-certs:ro \ - -e TLS_CA_CERTIFICATES_DIR=/conf/trusted-ca-certs \ - -e NO_PROXY=localhost,127.0.0.1 \ - -e ALL_PROXY=$HTTPS_PROXY_URL \ - -e PROXY_ID=$PROXY_ID \ - -e BROKER_URL=$BROKER_URL \ - -e OIDC_PROVIDER=secret-sync-central.oidc-client-enrollment.$BROKER_ID \ - -e SECRET_DEFINITIONS=$secret_sync_args \ - -e RUST_LOG=debug \ - docker.verbis.dkfz.de/cache/samply/secret-sync-local:latest + # docker run --rm \ + # -v /var/cache/bridgehead/secrets/oidc:/usr/local/cache \ + # -v $PRIVATEKEYFILENAME:/run/secrets/privkey.pem:ro \ + # -v /srv/docker/bridgehead/$PROJECT/root.crt.pem:/run/secrets/root.crt.pem:ro \ + # -v /etc/bridgehead/trusted-ca-certs:/conf/trusted-ca-certs:ro \ + # -e TLS_CA_CERTIFICATES_DIR=/conf/trusted-ca-certs \ + # -e NO_PROXY=localhost,127.0.0.1 \ + # -e ALL_PROXY=$HTTPS_PROXY_URL \ + # -e PROXY_ID=$PROXY_ID \ + # -e BROKER_URL=$BROKER_URL \ + # -e OIDC_PROVIDER=secret-sync-central.oidc-client-enrollment.$BROKER_ID \ + # -e SECRET_DEFINITIONS=$secret_sync_args \ + # -e RUST_LOG=debug \ + # samply/secret-sync-local:latest set -a # Export variables as environment variables source /var/cache/bridgehead/secrets/*