Remove vault unseal as it's done by hardware

2016-11-19 22:36:16 +01:00 · 2016-11-19 22:36:16 +01:00 · b2345211fd
commit b2345211fd
parent 24f726b08f
1 changed files with 0 additions and 6 deletions
--- a/bin/local-vault-auth
+++ b/bin/local-vault-auth
@ -1,11 +1,5 @@
 #!/bin/bash

-if (vault status | grep -q "Sealed: true"); then
-  echo -n "Vault is sealed, trying to unseal... "
-  UNSEAL_TOKEN=$(lpass show --field=Passphrase "vault-unseal")
-  vault unseal "${UNSEAL_TOKEN}" > /dev/null || echo "FAIL" && echo "OK"
-fi
-
 if ! (vault token-lookup 1>/dev/null 2>&1); then
  echo -n "Vault is not authenticated, trying to authenticate... "
  AUTH_TOKEN=$(lpass show --field=Passphrase "vault-auth")