From 9caa401f51f83470ca795340eb12b0721f7ece4f Mon Sep 17 00:00:00 2001 From: ixsb Date: Mon, 20 Apr 2026 16:06:59 +0100 Subject: [PATCH] hotfix: fixed runner not adding .env --- .github/workflows/cd.yml | 97 +++++++++++++++++++++++++++++++++++++++- 1 file changed, 96 insertions(+), 1 deletion(-) diff --git a/.github/workflows/cd.yml b/.github/workflows/cd.yml index 1d2a2ec..e2d0334 100644 --- a/.github/workflows/cd.yml +++ b/.github/workflows/cd.yml @@ -55,10 +55,105 @@ jobs: --days 3650 + - name: Write deployment .env + env: + POSTGRES_USER: ${{ secrets.POSTGRES_USER }} + POSTGRES_PASSWORD: ${{ secrets.POSTGRES_PASSWORD }} + POSTGRES_DB: ${{ secrets.POSTGRES_DB }} + MONGO_ROOT_USER: ${{ secrets.MONGO_ROOT_USER }} + MONGO_ROOT_PASSWORD: ${{ secrets.MONGO_ROOT_PASSWORD }} + MONGO_DB: ${{ secrets.MONGO_DB }} + MONGO_USER: ${{ secrets.MONGO_USER }} + MONGO_PASSWORD: ${{ secrets.MONGO_PASSWORD }} + GARAGE_RPC_SECRET: ${{ secrets.GARAGE_RPC_SECRET }} + GARAGE_ACCESS_KEY_ID: ${{ secrets.GARAGE_ACCESS_KEY_ID }} + GARAGE_SECRET_ACCESS_KEY: ${{ secrets.GARAGE_SECRET_ACCESS_KEY }} + RABBITMQ_DEFAULT_USER: ${{ secrets.RABBITMQ_DEFAULT_USER }} + RABBITMQ_DEFAULT_PASS: ${{ secrets.RABBITMQ_DEFAULT_PASS }} + RABBITMQ_API_USER: ${{ secrets.RABBITMQ_API_USER }} + RABBITMQ_API_PASS: ${{ secrets.RABBITMQ_API_PASS }} + RABBITMQ_SMTP_USER: ${{ secrets.RABBITMQ_SMTP_USER }} + RABBITMQ_SMTP_PASS: ${{ secrets.RABBITMQ_SMTP_PASS }} + KEYCLOAK_ADMIN: ${{ secrets.KEYCLOAK_ADMIN }} + KEYCLOAK_ADMIN_PASSWORD: ${{ secrets.KEYCLOAK_ADMIN_PASSWORD }} + CLIENT_SECRET: ${{ secrets.CLIENT_SECRET }} + GRAFANA_ADMIN_PASSWORD: ${{ secrets.GRAFANA_ADMIN_PASSWORD }} + RABBITMQ_QUEUE: ${{ vars.RABBITMQ_QUEUE }} + FILE_STORAGE_BACKEND: ${{ vars.FILE_STORAGE_BACKEND }} + GARAGE_S3_ENDPOINT: ${{ vars.GARAGE_S3_ENDPOINT }} + GARAGE_S3_PUBLIC_ENDPOINT: ${{ vars.GARAGE_S3_PUBLIC_ENDPOINT }} + GARAGE_S3_REGION: ${{ vars.GARAGE_S3_REGION }} + GARAGE_FORCE_PATH_STYLE: ${{ vars.GARAGE_FORCE_PATH_STYLE }} + GARAGE_BUCKET_CONTENT: ${{ vars.GARAGE_BUCKET_CONTENT }} + GARAGE_BUCKET_LOGOS: ${{ vars.GARAGE_BUCKET_LOGOS }} + GARAGE_CONTENT_PREFIX: ${{ vars.GARAGE_CONTENT_PREFIX }} + GARAGE_LOGOS_PREFIX: ${{ vars.GARAGE_LOGOS_PREFIX }} + PUBLIC_BASE_URL: ${{ vars.PUBLIC_BASE_URL }} + KC_HOSTNAME: ${{ vars.KC_HOSTNAME }} + KC_HOSTNAME_URL: ${{ vars.KC_HOSTNAME_URL }} + KEYCLOAK_INTERNAL_URL: ${{ vars.KEYCLOAK_INTERNAL_URL }} + API_INTERNAL_URL: ${{ vars.API_INTERNAL_URL }} + API_URL: ${{ vars.API_URL }} + WEB_URL: ${{ vars.WEB_URL }} + KEYCLOAK_ISSUER_URL: ${{ vars.KEYCLOAK_ISSUER_URL }} + NGINX_PORT: ${{ vars.NGINX_PORT }} + TLS_CERT_FILE: ${{ vars.TLS_CERT_FILE }} + TLS_KEY_FILE: ${{ vars.TLS_KEY_FILE }} + DOCKERHUB_USERNAME: ${{ vars.DOCKERHUB_USERNAME }} + GRAFANA_ADMIN_USER: ${{ vars.GRAFANA_ADMIN_USER }} + run: | + set -euo pipefail + { + printf 'POSTGRES_USER=%s\n' "$POSTGRES_USER" + printf 'POSTGRES_PASSWORD=%s\n' "$POSTGRES_PASSWORD" + printf 'POSTGRES_DB=%s\n' "$POSTGRES_DB" + printf 'MONGO_ROOT_USER=%s\n' "$MONGO_ROOT_USER" + printf 'MONGO_ROOT_PASSWORD=%s\n' "$MONGO_ROOT_PASSWORD" + printf 'MONGO_DB=%s\n' "$MONGO_DB" + printf 'MONGO_USER=%s\n' "$MONGO_USER" + printf 'MONGO_PASSWORD=%s\n' "$MONGO_PASSWORD" + printf 'GARAGE_RPC_SECRET=%s\n' "$GARAGE_RPC_SECRET" + printf 'GARAGE_ACCESS_KEY_ID=%s\n' "$GARAGE_ACCESS_KEY_ID" + printf 'GARAGE_SECRET_ACCESS_KEY=%s\n' "$GARAGE_SECRET_ACCESS_KEY" + printf 'FILE_STORAGE_BACKEND=%s\n' "$FILE_STORAGE_BACKEND" + printf 'GARAGE_S3_ENDPOINT=%s\n' "$GARAGE_S3_ENDPOINT" + printf 'GARAGE_S3_PUBLIC_ENDPOINT=%s\n' "$GARAGE_S3_PUBLIC_ENDPOINT" + printf 'GARAGE_S3_REGION=%s\n' "$GARAGE_S3_REGION" + printf 'GARAGE_FORCE_PATH_STYLE=%s\n' "$GARAGE_FORCE_PATH_STYLE" + printf 'GARAGE_BUCKET_CONTENT=%s\n' "$GARAGE_BUCKET_CONTENT" + printf 'GARAGE_BUCKET_LOGOS=%s\n' "$GARAGE_BUCKET_LOGOS" + printf 'GARAGE_CONTENT_PREFIX=%s\n' "$GARAGE_CONTENT_PREFIX" + printf 'GARAGE_LOGOS_PREFIX=%s\n' "$GARAGE_LOGOS_PREFIX" + printf 'RABBITMQ_DEFAULT_USER=%s\n' "$RABBITMQ_DEFAULT_USER" + printf 'RABBITMQ_DEFAULT_PASS=%s\n' "$RABBITMQ_DEFAULT_PASS" + printf 'RABBITMQ_QUEUE=%s\n' "$RABBITMQ_QUEUE" + printf 'RABBITMQ_API_USER=%s\n' "$RABBITMQ_API_USER" + printf 'RABBITMQ_API_PASS=%s\n' "$RABBITMQ_API_PASS" + printf 'RABBITMQ_SMTP_USER=%s\n' "$RABBITMQ_SMTP_USER" + printf 'RABBITMQ_SMTP_PASS=%s\n' "$RABBITMQ_SMTP_PASS" + printf 'KEYCLOAK_ADMIN=%s\n' "$KEYCLOAK_ADMIN" + printf 'KEYCLOAK_ADMIN_PASSWORD=%s\n' "$KEYCLOAK_ADMIN_PASSWORD" + printf 'CLIENT_SECRET=%s\n' "$CLIENT_SECRET" + printf 'KC_HOSTNAME=%s\n' "$KC_HOSTNAME" + printf 'KC_HOSTNAME_URL=%s\n' "$KC_HOSTNAME_URL" + printf 'KEYCLOAK_INTERNAL_URL=%s\n' "$KEYCLOAK_INTERNAL_URL" + printf 'API_INTERNAL_URL=%s\n' "$API_INTERNAL_URL" + printf 'PUBLIC_BASE_URL=%s\n' "$PUBLIC_BASE_URL" + printf 'API_URL=%s\n' "$API_URL" + printf 'WEB_URL=%s\n' "$WEB_URL" + printf 'KEYCLOAK_ISSUER_URL=%s\n' "$KEYCLOAK_ISSUER_URL" + printf 'NGINX_PORT=%s\n' "$NGINX_PORT" + printf 'TLS_CERT_FILE=%s\n' "$TLS_CERT_FILE" + printf 'TLS_KEY_FILE=%s\n' "$TLS_KEY_FILE" + printf 'DOCKERHUB_USERNAME=%s\n' "$DOCKERHUB_USERNAME" + printf 'GRAFANA_ADMIN_USER=%s\n' "$GRAFANA_ADMIN_USER" + printf 'GRAFANA_ADMIN_PASSWORD=%s\n' "$GRAFANA_ADMIN_PASSWORD" + printf 'NGINX_CONF_PATH=%s\n' "${{ inputs.nginx_config || 'nginx.mednat.conf' }}" + } > deployment/.env + - name: Rebuild and redeploy stack env: DOCKER_BUILDKIT: 1 - NGINX_CONF_PATH: ${{ inputs.nginx_config || 'nginx.mednat.conf' }} run: | set -euo pipefail COMPOSE_FILES="-f deployment/docker-compose.yml"