From fcee30acef1e4fce134fa54af79ad39c717ef834 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Luk=C3=A1=C5=A1=20Kucharczyk?= Date: Thu, 7 Dec 2023 11:28:33 +0100 Subject: [PATCH] drone: encrypt secrets --- secrets/drone.env | Bin 0 -> 225 bytes services/drone/drone.env | 1 - services/drone/drone.yml | 10 ++++++++-- 3 files changed, 8 insertions(+), 3 deletions(-) create mode 100644 secrets/drone.env diff --git a/secrets/drone.env b/secrets/drone.env new file mode 100644 index 0000000000000000000000000000000000000000..b8d26e346834f207d7b97347fa7b09e0f31e7b0b GIT binary patch literal 225 zcmV<703QDUM@dveQdv+`0RQDisrLPF!`J98_&hOsm*qjU1<(R@4B5DGk2q%+FnskD z;R(&${9D2^++{A;0t8{+{R`a_pp(DG2H!WQ9lf9?Z5iHzbW$|rX5l^>)RsHE+{#0m zgi}I3)Zp+ULty?{-Gg($s;Xkh>Zr8MZ6vjdytchN^Hu-!C+r{l&zpGrU!$-CFt$>Q zYTZA}2z_zHJw5GFIyB$Bp=rmWC32JAFB|b~(JAGhYs}RR5K0RIJUXLQJCbF>kPvii bCazD`v>~ahmX;#1{BnrLG54Pt!qlzHWJq(9 literal 0 HcmV?d00001 diff --git a/services/drone/drone.env b/services/drone/drone.env index 3744b8a..5779873 100644 --- a/services/drone/drone.env +++ b/services/drone/drone.env @@ -1,3 +1,2 @@ -DRONE_RPC_SECRET=c9abde046b241975770a775fca86e4c9 DRONE_SERVER_HOST=drone.${DOMAIN} DRONE_RPC_HOST=${DRONE_SERVER_HOST} \ No newline at end of file diff --git a/services/drone/drone.yml b/services/drone/drone.yml index 7a6b519..ea87927 100644 --- a/services/drone/drone.yml +++ b/services/drone/drone.yml @@ -10,9 +10,12 @@ services: - ${DOCKER_STORAGE_PATH}/drone:/data env_file: - drone.env + - ../../secrets/drone.env environment: - - DRONE_GITEA_CLIENT_ID=0d11d359-a420-4a66-a04c-0a136448b7e7 - - DRONE_GITEA_CLIENT_SECRET=Qx0LqE0Qb-M3MZAiojtlILRY3nfNzOiUUTdOCpW7Feo= + # encrypted + # - DRONE_GITEA_CLIENT_ID= + # - DRONE_GITEA_CLIENT_SECRET= + # - DRONE_RPC_SECRET= - DRONE_GITEA_SERVER=https://git.${DOMAIN} - DRONE_SERVER_PROTO=https - DRONE_USER_CREATE=username:lukas,admin:true @@ -30,7 +33,10 @@ services: - /var/run/docker.sock:/var/run/docker.sock env_file: - drone.env + - ../../secrets/drone.env environment: + # encrypted + # - DRONE_RPC_SECRET= - DRONE_RPC_PROTO=https - DRONE_RUNNER_CAPACITY=1 - DRONE_RUNNER_NAME=nas-docker-runner