This commit is contained in:
Márcio Fernandes
@@ -44,11 +44,13 @@ jobs:
|
||||
PBS_PASSWORD: ${{ secrets.PBS_PASSWORD }}
|
||||
PBS_FINGERPRINT: ${{ secrets.PBS_FINGERPRINT }}
|
||||
ONLYOFFICE_SECRET: ${{ secrets.ONLYOFFICE_SECRET }}
|
||||
WHITEBOARD_JWT_SECRET_KEY: ${{ secrets.WHITEBOARD_JWT_SECRET_KEY }}
|
||||
|
||||
# used only on helm set values - only required as environment variables
|
||||
NEXTCLOUD_HOST: ${{ secrets.NEXTCLOUD_HOST }}
|
||||
NEXTCLOUD_USERNAME: ${{ secrets.NEXTCLOUD_USERNAME }}
|
||||
NEXTCLOUD_PASSWORD: ${{ secrets.NEXTCLOUD_PASSWORD }}
|
||||
REDIS_PASSWORD: ${{ secrets.REDIS_PASSWORD }}
|
||||
|
||||
run: |
|
||||
set -euo pipefail
|
||||
@@ -57,6 +59,7 @@ jobs:
|
||||
trap '
|
||||
[ -d deploy/app/.env.d ] && rm -rf deploy/app/.env.d/*;
|
||||
[ -d deploy/app/onlyoffice/.env.d ] && rm -rf deploy/app/onlyoffice/.env.d/*;
|
||||
[ -d deploy/app/whiteboard/.env.d ] && rm -rf deploy/app/whiteboard/.env.d/*;
|
||||
' EXIT
|
||||
|
||||
# setup secrets files
|
||||
@@ -72,9 +75,12 @@ jobs:
|
||||
|
||||
echo "secret=${ONLYOFFICE_SECRET:?Missing ONLYOFFICE_SECRET}" >> deploy/app/onlyoffice/.env.d/onlyoffice.env
|
||||
|
||||
echo "JWT_SECRET_KEY=${WHITEBOARD_JWT_SECRET_KEY:?Missing WHITEBOARD_JWT_SECRET_KEY}" >> deploy/app/whiteboard/.env.d/whiteboard.env
|
||||
|
||||
# enforce secrets files security
|
||||
chmod 600 deploy/app/.env.d/*
|
||||
chmod 600 deploy/app/onlyoffice/.env.d/*
|
||||
|
||||
chmod 600 deploy/app/whiteboard/.env.d/*
|
||||
|
||||
# invoke deploy script
|
||||
ops-scripts/apply-app.sh
|
||||
|
||||
Reference in New Issue
Block a user