Issac issacg

## README.md

      
              4 files
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                issacg
                / README.md
            
            
              Created
              August 15, 2023 10:22
            
              
                Bootsrapping run:ai on private GKE cluster...
              
          
    run:ai bootstrap for GKE

A few notes:
This should be run with a user with admin privileges to GKE and to the cluster (kubectl)
I use certmanager to allow LetsEncrypt to manage the HTTPS keypair

Make a note of when you use production and when you use staging LetsEncrypt (letsencrypt.yaml line 90)
I use a small placeholder HTTPS service (apple service - letsencrypt.yaml line 48) as
a placeholder to make cert-manager request the certificate and store it in the kubernetes
secret before installing run:ai. You can remove it if not needed


## logs.txt
[LOG] initializing Kubernetes client...
[LOG] successfully initialized Kubernetes client
cleaning up previous deployment if it exists...
waiting for all resources to be deleted...
all resources were successfully deleted
deploying runai diagnostics tool...

[34m[TEST] running external cluster tests...[0m
--------------------------------------------------

## lamda.js
/*
Copyright 2018 Issac Goldstand

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software

## example-api-gateway-swagger.json
{
  "swagger": "2.0",
  "info": {
    "version": "2017-11-05T23:36:16Z",
    "title": "Vault Unseal API"
  },
  "host": "myproject.execute-api.us-east-1.amazonaws.com",
  "basePath": "/v1",
  "schemes": [
    "https"

## main.go
package main

import (
    "github.com/hashicorp/vault/plugins"
)

func main() {
	plugins.Serve(New().(*RedShift), nil)
}

## binding.gyp
{
    "targets": [{
        "target_name": "clrtest",
        "sources": ["main.cc"],
        "include_dirs" : [
                "<!(node -e \"require('nan')\")"
        ],
        "msvs_settings": {
          "VCCLCompilerTool": {
            "RuntimeTypeInfo": "true"

## new-vault-6149e1256e153ad1b39c423d42ee766aee6d81dc.log
C:\Users\issacg\vlt-test2>vault mount -path ca pki
Successfully mounted 'pki' at 'ca'!

C:\Users\issacg\vlt-test2>vault mount -path int pki
Successfully mounted 'pki' at 'int'!

C:\Users\issacg\vlt-test2>vault write ca/root/generate/internal common_name=ca ttl=24h
Key             Value
lease_id        ca/root/generate/internal/207e3f59-c007-92a5-1c19-a4bdc207142b
lease_duration  86399

## vlt-aws2consul.js
var _ = require('lodash'),
    Promise = require('bluebird'),
    consul = require('consul'),
    logger = require('log4js').getDefaultLogger(),
    AWS = require('aws-sdk');


var bucket = 'my.vault.main',
    prefix = '',
    region = 'us-west-2',

## MyArguments.cs
using System;
using System.Linq;
using CommandLine;

class MyArguments {
    // Add some [Option]s here for CommandLine to use

    public override string ToString()
    {
        return string.Concat(this

## update-geoip.js
// fetches and converts maxmind lite databases

'use strict';

var cp = require('child_process');
var fs = require('fs');
var http = require('http');
var path = require('path');
var url = require('url');
var zlib = require('zlib');
	[LOG] initializing Kubernetes client...
	[LOG] successfully initialized Kubernetes client
	cleaning up previous deployment if it exists...
	waiting for all resources to be deleted...
	all resources were successfully deleted
	deploying runai diagnostics tool...

	[34m[TEST] running external cluster tests...[0m
	--------------------------------------------------
	/*
	Copyright 2018 Issac Goldstand

	Licensed under the Apache License, Version 2.0 (the "License");
	you may not use this file except in compliance with the License.
	You may obtain a copy of the License at

	http://www.apache.org/licenses/LICENSE-2.0

	Unless required by applicable law or agreed to in writing, software
	{
	"swagger": "2.0",
	"info": {
	"version": "2017-11-05T23:36:16Z",
	"title": "Vault Unseal API"
	},
	"host": "myproject.execute-api.us-east-1.amazonaws.com",
	"basePath": "/v1",
	"schemes": [
	"https"
	package main

	import (
	"github.com/hashicorp/vault/plugins"
	)

	func main() {
	plugins.Serve(New().(*RedShift), nil)
	}
	{
	"targets": [{
	"target_name": "clrtest",
	"sources": ["main.cc"],
	"include_dirs" : [
	"<!(node -e \"require('nan')\")"
	],
	"msvs_settings": {
	"VCCLCompilerTool": {
	"RuntimeTypeInfo": "true"
	C:\Users\issacg\vlt-test2>vault mount -path ca pki
	Successfully mounted 'pki' at 'ca'!

	C:\Users\issacg\vlt-test2>vault mount -path int pki
	Successfully mounted 'pki' at 'int'!

	C:\Users\issacg\vlt-test2>vault write ca/root/generate/internal common_name=ca ttl=24h
	Key Value
	lease_id ca/root/generate/internal/207e3f59-c007-92a5-1c19-a4bdc207142b
	lease_duration 86399
	var _ = require('lodash'),
	Promise = require('bluebird'),
	consul = require('consul'),
	logger = require('log4js').getDefaultLogger(),
	AWS = require('aws-sdk');


	var bucket = 'my.vault.main',
	prefix = '',
	region = 'us-west-2',
	using System;
	using System.Linq;
	using CommandLine;

	class MyArguments {
	// Add some [Option]s here for CommandLine to use

	public override string ToString()
	{
	return string.Concat(this
	// fetches and converts maxmind lite databases

	'use strict';

	var cp = require('child_process');
	var fs = require('fs');
	var http = require('http');
	var path = require('path');
	var url = require('url');
	var zlib = require('zlib');