guettli/sharedinbox
1
0
Fork 0
Code Issues 21 Pull Requests 6 Actions Packages Projects Releases Wiki Activity

chore: migrate CI secrets from Forgejo to SOPS #354

Merged
guettlibot merged 9 commits from sops-migrate into main 2026-06-03 04:37:10 +00:00
Conversation 1 Commits 9 Files Changed 6
+16 -2
1 changed files with 16 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 86798065d3 - Show all commits
.forgejo/workflows/dump-secrets.yml
+16 -2
View File
@@ -9,8 +9,22 @@ jobs:
name: Encrypt secrets with age pubkey
runs-on: ubuntu-latest
steps:
- name: Test with one secret
- name: Check all secrets
env:
SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
SSH_KNOWN_HOSTS: ${{ secrets.SSH_KNOWN_HOSTS }}
SSH_USER: ${{ secrets.SSH_USER }}
SSH_HOST: ${{ secrets.SSH_HOST }}
WEBSITE_SSH_HOST: ${{ secrets.WEBSITE_SSH_HOST }}
PLAY_STORE_CONFIG_JSON: ${{ secrets.PLAY_STORE_CONFIG_JSON }}
ANDROID_KEYSTORE_BASE64: ${{ secrets.ANDROID_KEYSTORE_BASE64 }}
ANDROID_KEYSTORE_PASSWORD: ${{ secrets.ANDROID_KEYSTORE_PASSWORD }}
FIREBASE_TEST_LAB_SERVICE_ACCOUNT_KEY: ${{ secrets.FIREBASE_TEST_LAB_SERVICE_ACCOUNT_KEY }}
RENOVATE_FORGEJO_TOKEN: ${{ secrets.RENOVATE_FORGEJO_TOKEN }}
run: |
if [ -n "$SSH_PRIVATE_KEY" ]; then echo "SSH_PRIVATE_KEY is set"; else echo "SSH_PRIVATE_KEY is empty"; fi
for var in SSH_PRIVATE_KEY SSH_KNOWN_HOSTS SSH_USER SSH_HOST WEBSITE_SSH_HOST \
PLAY_STORE_CONFIG_JSON ANDROID_KEYSTORE_BASE64 ANDROID_KEYSTORE_PASSWORD \
FIREBASE_TEST_LAB_SERVICE_ACCOUNT_KEY RENOVATE_FORGEJO_TOKEN; do
val="${!var}"
if [ -n "$val" ]; then echo "$var is set (${#val} chars)"; else echo "$var is EMPTY"; fi
done