 a742331484
			
		
	
	a742331484
	
	
	
		
			
			* make redis settings more consistent Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add support to go Signed-off-by: Jens Langhammer <jens@goauthentik.io> * rewrite url Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix redis connect in wait_for_db Signed-off-by: Jens Langhammer <jens@goauthentik.io> * censor password when logging error Signed-off-by: Jens Langhammer <jens@goauthentik.io> * update docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * reword docs Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add redis url generation helper Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io>
		
			
				
	
	
		
			68 lines
		
	
	
		
			2.4 KiB
		
	
	
	
		
			Python
		
	
	
		
			Executable File
		
	
	
	
	
			
		
		
	
	
			68 lines
		
	
	
		
			2.4 KiB
		
	
	
	
		
			Python
		
	
	
		
			Executable File
		
	
	
	
	
| #!/usr/bin/env python
 | |
| """This file needs to be run from the root of the project to correctly
 | |
| import authentik. This is done by the dockerfile."""
 | |
| from sys import exit as sysexit
 | |
| from time import sleep
 | |
| from urllib.parse import quote_plus
 | |
| 
 | |
| from psycopg import OperationalError, connect
 | |
| from redis import Redis
 | |
| from redis.exceptions import RedisError
 | |
| 
 | |
| from authentik.lib.config import CONFIG, redis_url
 | |
| 
 | |
| 
 | |
| def check_postgres():
 | |
|     while True:
 | |
|         try:
 | |
|             conn = connect(
 | |
|                 dbname=CONFIG.get("postgresql.name"),
 | |
|                 user=CONFIG.get("postgresql.user"),
 | |
|                 password=CONFIG.get("postgresql.password"),
 | |
|                 host=CONFIG.get("postgresql.host"),
 | |
|                 port=CONFIG.get_int("postgresql.port"),
 | |
|                 sslmode=CONFIG.get("postgresql.sslmode"),
 | |
|                 sslrootcert=CONFIG.get("postgresql.sslrootcert"),
 | |
|                 sslcert=CONFIG.get("postgresql.sslcert"),
 | |
|                 sslkey=CONFIG.get("postgresql.sslkey"),
 | |
|             )
 | |
|             conn.cursor()
 | |
|             break
 | |
|         except OperationalError as exc:
 | |
|             sleep(1)
 | |
|             CONFIG.log("info", f"PostgreSQL connection failed, retrying... ({exc})")
 | |
|     CONFIG.log("info", "PostgreSQL connection successful")
 | |
| 
 | |
| 
 | |
| def check_redis():
 | |
|     url = redis_url(CONFIG.get("redis.db"))
 | |
|     while True:
 | |
|         try:
 | |
|             redis = Redis.from_url(url)
 | |
|             redis.ping()
 | |
|             break
 | |
|         except RedisError as exc:
 | |
|             sleep(1)
 | |
|             sanitized_url = url.replace(quote_plus(CONFIG.get("redis.password")), "******")
 | |
|             CONFIG.log(
 | |
|                 "info", f"Redis Connection failed, retrying... ({exc})", redis_url=sanitized_url
 | |
|             )
 | |
|     CONFIG.log("info", "Redis Connection successful")
 | |
| 
 | |
| 
 | |
| def wait_for_db():
 | |
|     CONFIG.log("info", "Starting authentik bootstrap")
 | |
|     # Sanity check, ensure SECRET_KEY is set before we even check for database connectivity
 | |
|     if CONFIG.get("secret_key") is None or len(CONFIG.get("secret_key")) == 0:
 | |
|         CONFIG.log("info", "----------------------------------------------------------------------")
 | |
|         CONFIG.log("info", "Secret key missing, check https://goauthentik.io/docs/installation/.")
 | |
|         CONFIG.log("info", "----------------------------------------------------------------------")
 | |
|         sysexit(1)
 | |
|     check_postgres()
 | |
|     check_redis()
 | |
|     CONFIG.log("info", "Finished authentik bootstrap")
 | |
| 
 | |
| 
 | |
| if __name__ == "__main__":
 | |
|     wait_for_db()
 |