Move vyos config to its own directory, build workflow tools for deploying configs, encrypt entire vyos config file until a better approach can be built

2024-10-09 15:49:33 -07:00 · 2024-10-09 15:49:33 -07:00 · 152403cc55
commit 152403cc55
parent 8f578aed76
6 changed files with 129 additions and 1 deletions
--- a/.gitattributes
+++ b/.gitattributes
@ -1,4 +1,5 @@
 secrets.env filter=sops diff=sops
 *.secrets filter=sops diff=sops
 *.token filter=sops diff=sops
-*.passwd filter=sops diff=sops
+*.passwd filter=sops diff=sops
 config.boot filter=sops diff=sops
--- a/homelab/vyos/config.boot
+++ b/homelab/vyos/config.boot
--- a/homelab/vyos/get_config.sh
+++ b/homelab/vyos/get_config.sh
@ -0,0 +1,5 @@
 #!/bin/vbash
 source /opt/vyatta/etc/functions/script-template
 show 
--- a/homelab/vyos/load_config.sh
+++ b/homelab/vyos/load_config.sh
@ -0,0 +1,9 @@
 #!/bin/vbash
 source /opt/vyatta/etc/functions/script-template
 configure
 load /home/vyos/config.boot
 echo "Running commit && exit"
 commit && exit || exit discard
--- a/homelab/vyos/save_config.sh
+++ b/homelab/vyos/save_config.sh
@ -0,0 +1,8 @@
 #!/bin/vbash
 source /opt/vyatta/etc/functions/script-template
 configure
 save || exit discard
--- a/homelab/vyos/vyos.sh
+++ b/homelab/vyos/vyos.sh
@ -0,0 +1,47 @@
 #!/bin/bash
 SCRIPT_DIR=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
 # Returns saved config file
 function get_config_saved () {
  ssh vyos@192.168.1.1 'cat /config/config.boot'
 }
 # Returns active config file
 function get_config_active () {
  scp -q ./get_config.sh vyos@192.168.1.1:/home/vyos/get_config.sh
  ssh vyos@192.168.1.1 'chmod +x /home/vyos/get_config.sh; /home/vyos/get_config.sh; rm /home/vyos/get_config.sh'
 }
 # Push local ./config.boot to remote /home/vyos/config.boot
 function post_config () {
  scp -q ./config.boot vyos@192.168.1.1:/home/vyos/config.boot
 }
 function load_config () {
  scp -q ./load_config.sh vyos@192.168.1.1:/home/vyos/load_config.sh
  ssh vyos@192.168.1.1 'chmod +x /home/vyos/load_config.sh; /home/vyos/load_config.sh; rm /home/vyos/load_config.sh'
 }
 function save_config () {
  scp -q ./save_config.sh vyos@192.168.1.1:/home/vyos/save_config.sh
  ssh vyos@192.168.1.1 'chmod +x /home/vyos/save_config.sh; /home/vyos/save_config.sh; rm /home/vyos/save_config.sh'
 }
 function pull () {
  get_config_saved > config.boot
 }
 function push () {
  post_config
  load_config
  save_config
 }
 function edit () {
  get_config_saved > $SCRIPT_DIR/config.boot
  vim $SCRIPT_DIR/config.boot
  push
 }
 "$1"