#!/bin/sh set -e set -u set -x usage() { cat <&2 ./manage.py initial_datas if [ "${RESPONSE_URI:-}" ]; then config_oidc4vp fi ;; PROD) printf "creating superuser \n user: ${DJANGO_SUPERUSER_USERNAME}\n password: ${DJANGO_SUPERUSER_PASSWORD}\n email: ${DJANGO_SUPERUSER_EMAIL}\n" >&2 ## thanks https://stackoverflow.com/questions/6244382/how-to-automate-createsuperuser-on-django/59467533#59467533 ./manage.py createsuperuser --no-input esac fi } _set() { key="${1}" value="${2}" response_uri="${3}" sqlite3 db.sqlite3 "update oidc4vp_organization set ${key}='${value}' where response_uri='${response_uri}';" } _get() { sqlite3 -json db.sqlite3 "select * from oidc4vp_organization;" } config_oidc4vp() { # populate your config R_URI_CLEAN="${RESPONSE_URI%/}" && R_URI_CLEAN="${R_URI_CLEAN#http*://}" local file="$(echo ${R_URI_CLEAN} | sed 's!/!__!g')" data="$(_get)" echo "${data}" | jq --arg uri "${RESPONSE_URI}" '{ ($uri): .}' > /sharedsecret/${file} echo wait the other idhubs to write, this is the only oportunity to sync with other idhubs in the docker compose sleep 2 # get other configs for host in /sharedsecret/*; do # we are flexible on querying for RESPONSE_URI: the first one based on regex target_uri="$(cat "${host}" | jq -r 'keys[0]')" if [ "${target_uri}" != "${RESPONSE_URI}" ]; then filtered_data="$(cat "${host}" | jq --arg uri "${RESPONSE_URI}" 'first(.[][] | select(.response_uri | test ($uri)))')" client_id="$(echo "${filtered_data}" | jq -r '.client_id')" client_secret="$(echo "${filtered_data}" | jq -r '.client_secret')" response_uri="$(echo "${filtered_data}" | jq -r '.response_uri')" _set my_client_id ${client_id} ${target_uri} _set my_client_secret ${client_secret} ${target_uri} fi done } main() { idhub_dir='/opt/idhub' cd "${idhub_dir}" if [ ! -f "./manage.py" ]; then usage fi deployment_strategy inject_env_vars #./manage.py collectstatic ./manage.py runserver 0.0.0.0:${PORT} } main "${@}"