qrkourier’s gists

qrkourier / get-go-debian.sh

Created December 22, 2022 19:42

	LATEST_GOLANG=$(wget -qO- "https://go.dev/VERSION?m=text" \| /bin/grep -Po '^go(\s+)?\K\d+\.\d+\.\d+$');
	LATEST_GOLANG_ARCH=go${LATEST_GOLANG}.linux-$(dpkg --print-architecture).tar.gz;
	wget -qO /tmp/${LATEST_GOLANG_ARCH} https://go.dev/dl/${LATEST_GOLANG_ARCH}
	sudo tar -xf /tmp/${LATEST_GOLANG_ARCH} -C /usr/local/
	echo "~/go/bin:/usr/local/go/bin:$PATH" >> ~/.bashrc

qrkourier / krun

Last active April 15, 2023 21:33

run any command in any container image in any Kubernetes namespace

qrkourier / Dockerfile.debian

Last active April 8, 2025 15:52

ziti-edge-tunnel Dockerfile for Debian

	# this may still be useful for building arm 32bit images, e.g., assuming the binary was built in the default path,
	# docker buildx build --platform linux/arm/v7 --file ./Dockerfile.debian --tag ziti-edge-tunnel:armv7 .
	#
	# run command "run-host" doesn't require elevated privileges, and "docker run --network container:myserverapp" would allow this container to host services targeting the loopback interface of "myserverapp"
	# docker run --name ziti-host --detach --restart unless-stopped --network host --volume ziti-host:/ziti-edge-tunnel --env ZITI_ENROLL_TOKEN="$(< /tmp/jwt)" ziti-edge-tunnel:armv7
	#
	FROM debian:buster-slim AS fetch-ziti-artifacts

	WORKDIR /

qrkourier / docker-get-libc-versions.bash

Created August 21, 2023 15:00

print table of Linux distros' libc versions by running a Docker container

	for OS in \
	oraclelinux:{7..9} \
	debian:{buster,bullseye,bookworm} \
	registry.access.redhat.com/ubi{8,9}/ubi \
	ubuntu:{bionic,focal,jammy} \
	quay.io/centos/centos:7 \
	fedora:{34,35,36} \
	rockylinux/rockylinux:{8,9};
	do
	(

qrkourier / ziti-jwt.py

Last active December 9, 2024 16:29

parse or verify a Ziti enrollment token as JWT

	#!/usr/bin/env python

	# This script parses and attempts to verify the signature of a Ziti JWT token and prints the header, payload, and
	# analysis of the token.

	import argparse
	import json
	import logging
	import os
	import ssl

qrkourier / ziti-mfa.bash

Last active February 28, 2024 18:28

send Ziti Edge Tunnel MFA when Yubikey is present

	#!/usr/bin/env bash

	set -o errexit
	set -o nounset
	set -o pipefail

	if systemctl is-enabled --quiet ziti-edge-tunnel.service && ykman piv info &>/dev/null
	then
	RESPONSE=$(ykman oath accounts code "$ZITI_IDENTITY" \
	\| awk '{print $2;}' \

qrkourier / zrok-test-cli-versions.py

Created January 18, 2024 22:32

ensure a list of BASH commands, e.g., `zrok enable` succeed for a list of zrok versions selected by criteria like min/max version and age.

	import datetime
	import logging
	import os
	import re
	import time

	import docker
	import requests
	from packaging import version

qrkourier / transcode-to-mp4.py

Created February 14, 2024 23:50

to convert videos in a folder to MP4 and remove the old file if successful, say "python transcode-to-mp4.py FOLDER --delete"

	import os
	import sys
	from os import chdir, walk
	from os.path import dirname, getsize, join
	from pathlib import Path
	from shutil import move

	import ffmpeg
	import filetype

qrkourier / artifactory-retention.zsh

Last active August 23, 2024 01:59

Artifactory retention policy

	(
	set -euxopipefail

	ARTIFACTORY_REPO='zitipax-(openziti-(rpm\|deb)-test\|fork-(rpm\|deb)-stable)'
	: DELETE="--quiet"
	DELETE="--dry-run"
	RETENTION_DAYS=30

	declare -a ARTIFACTS=(ziti-edge-tunnel openziti{,-controller,-router,-console} zrok{,-share})

qrkourier / artifactory-unpublish.zsh

Last active May 22, 2024 15:49

Delete a bad version from DEB/RPM Artifactory repos

	(
	set -euxopipefail

	ARTIFACTORY_REPO='zitipax-openziti-(rpm\|deb)-stable'
	DELETE="--dry-run"
	: DELETE="--quiet"
	BAD_VERSION=1.1.8

	declare -a ARTIFACTS=(openziti{,-controller,-router})

Kenneth Bingham qrkourier