Helper scripts for infrastructure setup, identity provider bootstrap, and post-install database seeding.
| Script | Description | Usage |
|---|---|---|
| nginx.sh | Installs the NGINX Ingress Controller via Helm | ./scripts/nginx.sh |
| cert-issuer.sh | Installs cert-manager via Helm for automatic TLS | ./scripts/cert-issuer.sh |
Both scripts accept -n <namespace> to override the default namespace (ingress-nginx).
| Script | Description | Usage |
|---|---|---|
| entra/bootstrap-entra.sh | Runs the entra-bootstrap Helm chart and monitors job completion |
./scripts/entra/bootstrap-entra.sh -f bootstrap-values.yaml -n gov |
| keycloak/bootstrap-keycloak.sh | Runs the keycloak-bootstrap Helm chart and monitors job completion |
./scripts/keycloak/bootstrap-keycloak.sh -f bootstrap-values.yaml -n gov |
These scripts validate prerequisites (required secrets exist), deploy the bootstrap Helm chart, monitor the job to completion, and display next steps.
| Script | Description | Usage |
|---|---|---|
| entra/post-install-entra-setup.sh | Creates organization and platform-admin user via Microsoft Graph API | ./scripts/entra/post-install-entra-setup.sh -n gov -e admin@contoso.com |
| keycloak/post-install-keycloak-setup.sh | Creates organization and platform-admin user via Keycloak Admin API | ./scripts/keycloak/post-install-keycloak-setup.sh -n gov -e admin@example.com |
These scripts are an alternative to the Helm post-install hooks. They wait for the platform to be running, verify database migrations are complete, seed the organization and admin user, and verify the integration.
The helpers/ directory contains shared shell functions used by all scripts:
| File | Purpose |
|---|---|
| helpers/assert.sh | Prerequisite and argument validation |
| helpers/output.sh | Colored output formatting |
| helpers/log.sh | Logging utilities |
| helpers/string.sh | String manipulation |
| helpers/array.sh | Array utilities |
| helpers/os.sh | OS detection |