stack
/
ghost
1
0
Fork 0
Code Issues Pull Requests 1 Releases Wiki Activity

ci: jsonnet secrets

This commit is contained in:
Giles 2020-08-13 20:08:28 +01:00
parent 22f2982b5c
commit 81a9aedb17
3 changed files with 32 additions and 61 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

80
.drone/drone-home.yml
View File

@ -19,10 +19,9 @@ steps:
- drone_repo_namespace - drone_repo_namespace
- git_domain - git_domain
- local_docker_registry - local_docker_registry
- gitea_mailer_host - ghost_mail_service
- gitea_mailer_from - ghost_mail_user
- gitea_mailer_user - commento_origin
- gitea_app_name
host: host:
from_secret: ssh-host from_secret: ssh-host
password: password:
@ -33,21 +32,18 @@ steps:
- rm -f env-ghost - rm -f env-ghost
- "echo \"export GIT_DOMAIN='$${GIT_DOMAIN}'\" >> env-ghost # \"git-domain\"" - "echo \"export GIT_DOMAIN='$${GIT_DOMAIN}'\" >> env-ghost # \"git-domain\""
- "echo \"export LOCAL_DOCKER_REGISTRY='$${LOCAL_DOCKER_REGISTRY}'\" >> env-ghost # \"local-docker-registry\"" - "echo \"export LOCAL_DOCKER_REGISTRY='$${LOCAL_DOCKER_REGISTRY}'\" >> env-ghost # \"local-docker-registry\""
- "echo \"export GITEA_MAILER_HOST='$${GITEA_MAILER_HOST}'\" >> env-ghost # \"gitea-mailer-host\"" - "echo \"export GHOST_MAIL_SERVICE='$${GHOST_MAIL_SERVICE}'\" >> env-ghost # \"ghost-mail-service\""
- "echo \"export GITEA_MAILER_FROM='$${GITEA_MAILER_FROM}'\" >> env-ghost # \"gitea-mailer-from\"" - "echo \"export GHOST_MAIL_USER='$${GHOST_MAIL_USER}'\" >> env-ghost # \"ghost-mail-user\""
- "echo \"export GITEA_MAILER_USER='$${GITEA_MAILER_USER}'\" >> env-ghost # \"gitea-mailer-user\"" - "echo \"export COMMENTO_ORIGIN='$${COMMENTO_ORIGIN}'\" >> env-ghost # \"commento-origin\""
- "echo \"export GITEA_APP_NAME='$${GITEA_APP_NAME}'\" >> env-ghost # \"gitea-app-name\""
username: username:
from_secret: ssh-user from_secret: ssh-user
environment: environment:
GITEA_APP_NAME: COMMENTO_ORIGIN:
from_secret: gitea-app-name from_secret: commento-origin
GITEA_MAILER_FROM: GHOST_MAIL_SERVICE:
from_secret: gitea-mailer-from from_secret: ghost-mail-service
GITEA_MAILER_HOST: GHOST_MAIL_USER:
from_secret: gitea-mailer-host from_secret: ghost-mail-user
GITEA_MAILER_USER:
from_secret: gitea-mailer-user
GIT_DOMAIN: GIT_DOMAIN:
from_secret: git-domain from_secret: git-domain
LOCAL_DOCKER_REGISTRY: LOCAL_DOCKER_REGISTRY:
@ -102,15 +98,10 @@ steps:
- drone_repo_namespace - drone_repo_namespace
- git_domain - git_domain
- local_docker_registry - local_docker_registry
- gitea_mailer_host - ghost_mail_service
- gitea_mailer_from - ghost_mail_user
- gitea_mailer_user - commento_origin
- gitea_app_name - ghost_mysql_root_password
- gitea_server_lfs_jwt_secret
- gitea_security_secret_key
- gitea_security_internal_token
- gitea_oauth2_jwt_secret
- gitea_mailer_passwd
- registry_password - registry_password
host: host:
from_secret: ssh-host from_secret: ssh-host
@ -119,18 +110,13 @@ steps:
port: port:
from_secret: ssh-port from_secret: ssh-port
script: script:
- export GITEA_SERVER_LFS_JWT_SECRET=$${GITEA_SERVER_LFS_JWT_SECRET} - export GHOST_MYSQL_ROOT_PASSWORD=$${GHOST_MYSQL_ROOT_PASSWORD}
- export GITEA_SECURITY_SECRET_KEY=$${GITEA_SECURITY_SECRET_KEY}
- export GITEA_SECURITY_INTERNAL_TOKEN=$${GITEA_SECURITY_INTERNAL_TOKEN}
- export GITEA_OAUTH2_JWT_SECRET=$${GITEA_OAUTH2_JWT_SECRET}
- export GITEA_MAILER_PASSWD=$${GITEA_MAILER_PASSWD}
- export REGISTRY_PASSWORD=$${REGISTRY_PASSWORD} - export REGISTRY_PASSWORD=$${REGISTRY_PASSWORD}
- export GIT_DOMAIN=$${GIT_DOMAIN} - export GIT_DOMAIN=$${GIT_DOMAIN}
- export LOCAL_DOCKER_REGISTRY=$${LOCAL_DOCKER_REGISTRY} - export LOCAL_DOCKER_REGISTRY=$${LOCAL_DOCKER_REGISTRY}
- export GITEA_MAILER_HOST=$${GITEA_MAILER_HOST} - export GHOST_MAIL_SERVICE=$${GHOST_MAIL_SERVICE}
- export GITEA_MAILER_FROM=$${GITEA_MAILER_FROM} - export GHOST_MAIL_USER=$${GHOST_MAIL_USER}
- export GITEA_MAILER_USER=$${GITEA_MAILER_USER} - export COMMENTO_ORIGIN=$${COMMENTO_ORIGIN}
- export GITEA_APP_NAME=$${GITEA_APP_NAME}
- set -e - set -e
- cd /stack/ghost - cd /stack/ghost
- docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}" - docker login $${LOCAL_DOCKER_REGISTRY} --username client --password "$${REGISTRY_PASSWORD}"
@ -139,24 +125,14 @@ steps:
username: username:
from_secret: ssh-user from_secret: ssh-user
environment: environment:
GITEA_APP_NAME: COMMENTO_ORIGIN:
from_secret: gitea-app-name from_secret: commento-origin
GITEA_MAILER_FROM: GHOST_MAIL_SERVICE:
from_secret: gitea-mailer-from from_secret: ghost-mail-service
GITEA_MAILER_HOST: GHOST_MAIL_USER:
from_secret: gitea-mailer-host from_secret: ghost-mail-user
GITEA_MAILER_PASSWD: GHOST_MYSQL_ROOT_PASSWORD:
from_secret: gitea-mailer-passwd from_secret: ghost-mysql-root-password
GITEA_MAILER_USER:
from_secret: gitea-mailer-user
GITEA_OAUTH2_JWT_SECRET:
from_secret: gitea-oauth2-jwt-secret
GITEA_SECURITY_INTERNAL_TOKEN:
from_secret: gitea-security-internal-token
GITEA_SECURITY_SECRET_KEY:
from_secret: gitea-security-secret-key
GITEA_SERVER_LFS_JWT_SECRET:
from_secret: gitea-server-lfs-jwt-secret
GIT_DOMAIN: GIT_DOMAIN:
from_secret: git-domain from_secret: git-domain
LOCAL_DOCKER_REGISTRY: LOCAL_DOCKER_REGISTRY:

7
.drone/lib/public-secrets.libsonnet
View File

@ -1,8 +1,7 @@
[ [
'git-domain', 'git-domain',
'local-docker-registry', 'local-docker-registry',
'gitea-mailer-host', 'ghost-mail-service',
'gitea-mailer-from', 'ghost-mail-user',
'gitea-mailer-user', 'commento-origin',
'gitea-app-name',
] ]

6
.drone/lib/secret-secrets.libsonnet
View File

@ -1,8 +1,4 @@
[ [
'gitea-server-lfs-jwt-secret', 'ghost-mysql-root-password',
'gitea-security-secret-key',
'gitea-security-internal-token',
'gitea-oauth2-jwt-secret',
'gitea-mailer-passwd',
'registry-password', 'registry-password',
] ]