parent
903e98ba3b
commit
14f07e2609
GPG key ID:
E9602264D639FF68
2 changed files with 4 additions and 1 deletions
|
|
@ -6,7 +6,9 @@ nix run .#build-container
|
||||||
|
|
||||||
if [[ $BRANCH == "main" && -f $SECRET_PATH ]]; then
|
if [[ $BRANCH == "main" && -f $SECRET_PATH ]]; then
|
||||||
# Load secrets
|
# Load secrets
|
||||||
|
set +x
|
||||||
source $SECRET_PATH
|
source $SECRET_PATH
|
||||||
|
set -x
|
||||||
|
|
||||||
# Configure Docker Auth
|
# Configure Docker Auth
|
||||||
cat > .docker.json <<EOF
|
cat > .docker.json <<EOF
|
||||||
|
|
|
||||||
|
|
@ -96,7 +96,7 @@ The key must contain a JSON file with your desired token, gitea info, trust cond
|
||||||
"trusted": {
|
"trusted": {
|
||||||
"senders": [ "quentin", "lx" ]
|
"senders": [ "quentin", "lx" ]
|
||||||
},
|
},
|
||||||
"inject": "SECRET1=xx\nSECRET2=yy"
|
"inject": "set +x\nexport SECRET1=xx\nexport SECRET2=yy"
|
||||||
}
|
}
|
||||||
```
|
```
|
||||||
|
|
||||||
|
|
@ -194,6 +194,7 @@ of code quality, abstraction or anything else.
|
||||||
- [X] Read Nomad+Consul config from environment variables
|
- [X] Read Nomad+Consul config from environment variables
|
||||||
- [X] Inject secrets only when the sender is trusted
|
- [X] Inject secrets only when the sender is trusted
|
||||||
- [ ] Test PR behavior
|
- [ ] Test PR behavior
|
||||||
|
- [ ] Handle tags
|
||||||
|
|
||||||
### Ideas
|
### Ideas
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue