Storing encrypted files in source on CircleCI
Latest commit 36bc131 Jul 20, 2016 @bellkev bellkev committed on GitHub Update README.md
Permalink
Failed to load latest commit information.
.gitignore Initial commit Jul 20, 2016
README.md Update README.md Jul 20, 2016
circle.yml Make yaml parser happy Jul 20, 2016
secret-env-cipher Initial commit Jul 20, 2016

README.md

encrypted-files

This is a simple example of storing encrypted files in source for use in CircleCI builds.

In this example, the gitignored contents of secret-env-plain are:

FOO=secret
BAR=alsosecret

If they are encrypted with openssl aes-256-cbc -e -in secret-env-plain -out secret-env-cipher -k $KEY, and $KEY is set in the CircleCI project, the variables in secret-env-plain will be available in the build.

You could use the same process but replace the openssl command in circle.yml with openssl aes-256-cbc -d -in secret-file-cipher -out secret-file-plain -k $KEY to create plaintext files in the build environment instead of just exporting environment variables.