Move vyos config to its own directory, build workflow tools for deploying configs, encrypt entire vyos config file until a better approach can be built

2024-10-09 15:49:33 -07:00 · 2024-10-09 15:49:33 -07:00 · 152403cc55
commit 152403cc55
parent 8f578aed76
6 changed files with 129 additions and 1 deletions
--- a/.gitattributes
+++ b/.gitattributes
@ -2,3 +2,4 @@ secrets.env filter=sops diff=sops
 *.secrets filter=sops diff=sops
 *.token filter=sops diff=sops
 *.passwd filter=sops diff=sops
+config.boot filter=sops diff=sops
--- a/homelab/vyos/config.boot
+++ b/homelab/vyos/config.boot
--- a/homelab/vyos/get_config.sh
+++ b/homelab/vyos/get_config.sh
@ -0,0 +1,5 @@
+#!/bin/vbash
+
+source /opt/vyatta/etc/functions/script-template
+
+show 
--- a/homelab/vyos/load_config.sh
+++ b/homelab/vyos/load_config.sh
@ -0,0 +1,9 @@
+#!/bin/vbash
+
+source /opt/vyatta/etc/functions/script-template
+
+configure
+load /home/vyos/config.boot
+
+echo "Running commit && exit"
+commit && exit || exit discard
--- a/homelab/vyos/save_config.sh
+++ b/homelab/vyos/save_config.sh
@ -0,0 +1,8 @@
+#!/bin/vbash
+
+source /opt/vyatta/etc/functions/script-template
+
+configure
+
+
+save || exit discard
--- a/homelab/vyos/vyos.sh
+++ b/homelab/vyos/vyos.sh
@ -0,0 +1,47 @@
+#!/bin/bash
+
+SCRIPT_DIR=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
+
+# Returns saved config file
+function get_config_saved () {
+  ssh vyos@192.168.1.1 'cat /config/config.boot'
+}
+
+# Returns active config file
+function get_config_active () {
+  scp -q ./get_config.sh vyos@192.168.1.1:/home/vyos/get_config.sh
+  ssh vyos@192.168.1.1 'chmod +x /home/vyos/get_config.sh; /home/vyos/get_config.sh; rm /home/vyos/get_config.sh'
+}
+
+# Push local ./config.boot to remote /home/vyos/config.boot
+function post_config () {
+  scp -q ./config.boot vyos@192.168.1.1:/home/vyos/config.boot
+}
+
+function load_config () {
+  scp -q ./load_config.sh vyos@192.168.1.1:/home/vyos/load_config.sh
+  ssh vyos@192.168.1.1 'chmod +x /home/vyos/load_config.sh; /home/vyos/load_config.sh; rm /home/vyos/load_config.sh'
+}
+
+function save_config () {
+  scp -q ./save_config.sh vyos@192.168.1.1:/home/vyos/save_config.sh
+  ssh vyos@192.168.1.1 'chmod +x /home/vyos/save_config.sh; /home/vyos/save_config.sh; rm /home/vyos/save_config.sh'
+}
+
+function pull () {
+  get_config_saved > config.boot
+}
+
+function push () {
+  post_config
+  load_config
+  save_config
+}
+
+function edit () {
+  get_config_saved > $SCRIPT_DIR/config.boot
+  vim $SCRIPT_DIR/config.boot
+  push
+}
+
+"$1"