hermes/agent-secret-vault
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add installer env preflight

Browse Source
This commit is contained in:
hermes
2026-05-14 20:26:20 +08:00
parent 525161dd0c
commit 7fa14229a3
4 changed files with 101 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
docs/agent-install-runbook.md
View File

@@ -93,6 +93,14 @@ INSTALL_ENV_FILE=install.local.env ./scripts/install-vault-pass.sh
不要把含真實密碼/token 的 env 檔 commit。
執行安裝前可先檢查 env 是否足夠非互動安裝:
```bash
./scripts/install-vault-pass.sh --check-env
```
若輸出顯示 env 不足installer 會在正式安裝時進入互動提示或列出缺少欄位。
## 3. 安裝 vault password file
標準位置:

6
docs/human-guide.md
View File

@@ -28,6 +28,7 @@ cd agent-secret-vault
接著安裝 vault password file
```bash
./scripts/install-vault-pass.sh --check-env
./scripts/install-vault-pass.sh
```
@@ -74,6 +75,7 @@ git push
cd ~/projects/agent-secret-vault
cp -n install.env.example install.env
editor install.env
./scripts/install-vault-pass.sh --check-env
./scripts/install-vault-pass.sh
```
@@ -87,7 +89,8 @@ editor install.env
若 env 內含真實 secrets不要 commit。可改用 `install.local.env`,再執行:
```bash
INSTALL_ENV_FILE=install.local.env ./scripts/install-vault-pass.sh
INSTALL_ENV_FILE=install.local.env ./scripts/install-vault-pass.sh --check-env
./scripts/install-vault-pass.sh
```
## 給 agent 的全自動安裝方式
@@ -103,6 +106,7 @@ VAULT_PASS_URL="https://example.com/one-time/vault-pass.txt" \
# 或zip 密碼放在本機安全檔案
INSTALL_VAULT_PASS_METHOD=archive \
VAULT_PASS_ZIP_PASSWORD_FILE=/secure/path/zip-password.txt \
./scripts/install-vault-pass.sh --check-env
./scripts/install-vault-pass.sh
```