Skip to content
/ pvmount-tool Public

A cli tool for mounting secrets to mac os - complements property volume library

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sonny-hmcts/pvmount-tool

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
.github/workflows
.github/workflows
 
 
.DS_Store
.DS_Store
 
 
.gitignore
.gitignore
 
 
.nvmrc
.nvmrc
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
pvmount.js
pvmount.js
 
 

Repository files navigation

pvmount CLI tool for MAC OS

pvmount (proprerty volume mount) is a tool created to download azure secrets and mount them to the following path /mnt/secrets

The tool is designed to complement https://github.com/hmcts/properties-volume-nodejs

Getting Started from source

prerequisites

  • Node.js version can be found in .nvmrc (as of writting v18.17.1)
  • NVM node version manager (optional but allows swapping node version with a single command)
  • Azure CLI

If using NVM the following command can be run in the project root directory to make sure the enviroment has the same nodejs version stated in the .nvmrc file. This command can be skipped if your version of node already matches the required version found in the .nvmrc file.

nvm use

As the application mounts files in the root folder sudo is required

Running the application from source code

Install dependencies by executing the following command:

npm install

Run the help command to get a list of commands

sudo node pvmount.js -h

Run the command to download secrets and mount files

sudo node pvmount.js -n aac  -e aat

Run the command to download secrets to a specific folder

sudo node pvmount.js -n aac  -e aat -m /some/dir/example

Build cli to executable

npm run build

This will output an executable file called pvmount with no extension

Install pvmount

Copy the new pvmount executable created into the following folder

/user/local/bin

Open a new terminal and run the following to check installation

pvmount -h

Mac OS catalina and up

This cli tool will work with pre and post catalina. However since Catalina OS. Apple has made the root directory read-only. To bypass this issue the tool will create a file called.

/etc/synthetic.conf

That will contain confirugration to create a readonly symlink from /mnt/secrets -> /Volumes/mnt/secrets

/mnt/secrets -> /Volumes/mnt/secrets

Synthetic.conf is read on boot however the tool will run a command to force the configurations to take place without a reboot and then for safty the tool will delete the newly created /etc/synthetic.conf file.

Why Delete synthetic.conf

Although the tool should create the perfect file any sort of issue inside synthetic.conf will prevent Mac OS from booting. it is saver for pvmount to delete the file after it is done forcing a mount. The downside to this is that the pvmount commands has to be run again if a reboot has taken place. going forward a command could be added to turn off auto deletetion of the synthetic.conf file if your feeling lucky it wont break the boot.

Notice

THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

About

A cli tool for mounting secrets to mac os - complements property volume library

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 9

Release 14 Latest
Feb 9, 2024
+ 8 releases

Packages

No packages published

Languages