Redis-Go-Proxy/setup.sh at main · MelonBot-Development/Redis-Go-Proxy · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
#!/bin/false

curl -fsSL https://apt.releases.hashicorp.com/gpg | apt-key add -
apt-add-repository "deb [arch=amd64] https://apt.releases.hashicorp.com $(lsb_release -cs) main"
apt update && apt install -y nomad

export NOMAD_ADDR=http://10.0.0.2:4646
export VAULT_ADDR=http://10.0.0.2:8200

curl https://get.docker.com | sh

cat <<EOF
data_dir = "/opt/nomad/data"
bind_addr = "10.0.0.2"
server {
  enabled = true
  bootstrap_expect = 1
}
client {
  enabled = false
}
EOF > /etc/nomad.d/nomad.hcl

apt update && apt install -y vault
cat <<EOF
ui = true
storage "file" {
  path = "/opt/vault/data"
}
listener "tcp" {
  address = "10.0.0.2:8200"
  tls_disable = 1
}
EOF > /etc/vault.d/vault.hcl

vault operator init -key-shares=1 -key-threshold=1
vault operator unseal
vault login

vault secrets enable kv
vault kv put kv/melonbot discordToken=tokenhere databasePassword=passwordhere sentryUrl=https://secreturlhere@sentry.melonbot.me/1

echo 'path "kv/melonbot" { capabilities = ["list", "read"] }' > policy.hcl
vault policy write read-kv policy.hcl

cat <<EOF
vault {
  enabled = true
  address = "http://10.0.0.2:8200"
  token = "<nomad server root token>"
}
EOF >> /etc/nomad.d/nomad.hcl

docker run -d --name postgres \
    -p 10.0.0.3:5432:5432 \
    -v /mnt/postgresql:/var/lib/postgresql/data \
    --shm-size=1g \
    postgres:13-alpine

docker run -d --name influxdb \
    -p 10.0.0.3:8086:8086 \
    -v /mnt/influxdb:/var/lib/influxdb \
    influxdb:1.8

docker run -d --name redis \
    -p 10.0.0.3:6379:6379 \
    eqalpha/keydb

nomad job run melonbot.hcl