Digger build should use ENV for keys rather than live in digger.yaml #17

Open
binocarlos opened this Issue Nov 20, 2013 · 0 comments

Comments

Projects
None yet
1 participant
Contributor

binocarlos commented Nov 20, 2013

I've committed a mortal sin and the API keys and other sensitive data for an app is right there with the rest of the config in digger.yaml - BAD

Also - it means I can put diggerdubs (the private repo) into digger.io so the whole website is open source

So - digger build should have an option for an ENV file and the digger.yaml should reference the ENV:

Currently:

myprivatething: BAD

Should be:

myprivatething: {{ ENV['DIGGER_MY_PRIVATE_THING'] }}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment