javatarz/test_encryption.sh

## test_encryption.sh
#!/bin/bash

base_dir="config"

for sub_dir in $(find $base_dir -mindepth 1 -maxdepth 1 -type d); do
    workspace_name=${sub_dir#"$base_dir/"}
    password_var_name="\$SECRET_KEY_$workspace_name"
    secret_key_for_workspace=$(eval "echo $password_var_name")

    if [ -z "$secret_key_for_workspace" ]; then
        echo "Variable $password_var_name has not been set. Unable to test"
        exit 1
    fi

    for input_file in config/$workspace_name/*.tfsecrets.enc
    do
        openssl enc -aes-256-cbc -d -in $input_file -pass pass:$secret_key_for_workspace &> /dev/null
        if [ $? != 0 ]; then
            echo "Unable to decrypt $input_file with $password_var_name"
            exit 1
        fi
    done

    echo "Successfully decrypted all secrets in config/$workspace_name"
done
	#!/bin/bash

	base_dir="config"

	for sub_dir in $(find $base_dir -mindepth 1 -maxdepth 1 -type d); do
	workspace_name=${sub_dir#"$base_dir/"}
	password_var_name="\$SECRET_KEY_$workspace_name"
	secret_key_for_workspace=$(eval "echo $password_var_name")

	if [ -z "$secret_key_for_workspace" ]; then
	echo "Variable $password_var_name has not been set. Unable to test"
	exit 1
	fi

	for input_file in config/$workspace_name/*.tfsecrets.enc
	do
	openssl enc -aes-256-cbc -d -in $input_file -pass pass:$secret_key_for_workspace &> /dev/null
	if [ $? != 0 ]; then
	echo "Unable to decrypt $input_file with $password_var_name"
	exit 1
	fi
	done

	echo "Successfully decrypted all secrets in config/$workspace_name"
	done