parent
903e98ba3b
commit
14f07e2609
GPG key ID:
E9602264D639FF68
2 changed files with 4 additions and 1 deletions
|
|
@ -6,7 +6,9 @@ nix run .#build-container
|
|||
|
||||
if [[ $BRANCH == "main" && -f $SECRET_PATH ]]; then
|
||||
# Load secrets
|
||||
set +x
|
||||
source $SECRET_PATH
|
||||
set -x
|
||||
|
||||
# Configure Docker Auth
|
||||
cat > .docker.json <<EOF
|
||||
|
|
|
|||
|
|
@ -96,7 +96,7 @@ The key must contain a JSON file with your desired token, gitea info, trust cond
|
|||
"trusted": {
|
||||
"senders": [ "quentin", "lx" ]
|
||||
},
|
||||
"inject": "SECRET1=xx\nSECRET2=yy"
|
||||
"inject": "set +x\nexport SECRET1=xx\nexport SECRET2=yy"
|
||||
}
|
||||
```
|
||||
|
||||
|
|
@ -194,6 +194,7 @@ of code quality, abstraction or anything else.
|
|||
- [X] Read Nomad+Consul config from environment variables
|
||||
- [X] Inject secrets only when the sender is trusted
|
||||
- [ ] Test PR behavior
|
||||
- [ ] Handle tags
|
||||
|
||||
### Ideas
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue