cam/MAIA
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

move secrets to env through cicd
Some checks failed
Build and Deploy Backend / Run Linters and Tests (push) Successful in 19s
Details
Build and Deploy Backend / Build and Deploy (push) Failing after 1m1s
Details

Browse Source
This commit is contained in:
c-d-p
2025-05-01 14:08:20 +02:00
parent 1a99d6023c
commit 46c6c410b9
6 changed files with 29 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
.gitea/workflows/deploy.yml
View File

@@ -120,6 +120,15 @@ jobs:
# Deploy to mara # Deploy to mara
# ------------------------------------------------------------------ # ------------------------------------------------------------------
- name: Deploy Locally - name: Deploy Locally
env:
DB_HOST: ${{ vars.DB_HOST }}
DB_USER: ${{ vars.DB_USER }}
DB_NAME: ${{ vars.DB_NAME }}
DB_PASSWORD: ${{ secrets.DB_PASSWORD }}
REDIS_URL: ${{ vars.REDIS_URL }}
PEPPER: ${{ secrets.PEPPER }}
JWT_SECRET_KEY: ${{ secrets.JWT_SECRET_KEY }}
GOOGLE_API_KEY: ${{ secrets.GOOGLE_API_KEY }}
run: | run: |
#!/bin/bash -ex #!/bin/bash -ex

1
.gitignore vendored
View File

@@ -1,6 +1,7 @@
# backend # backend
backend/env backend/env
backend/.env.local backend/.env.local
backend/.env.prod.bak
backend/db backend/db
backend/redis_data backend/redis_data

10
backend/.env.deploy
View File

@@ -1,10 +0,0 @@
DB_HOST = "db"
DB_USER = "maia"
DB_PASSWORD = "Cr7#qVVYF*8s&#jsnay^!EDf5X31Fs"
DB_NAME = "maia"
REDIS_URL = "redis://redis:6379"
PEPPER = "LsD7%"
JWT_SECRET_KEY="1c8cf3ca6972b365f8108dad247e61abdcb6faff5a6c8ba00cb6fa17396702bf"
GOOGLE_API_KEY="AIzaSyBrte_mETZJce8qE6cRTSz_fHOjdjlShBk"

BIN
backend/core/__pycache__/config.cpython-312.pyc
View File

Binary file not shown.

2
backend/core/config.py
View File

@@ -2,7 +2,7 @@
from pydantic_settings import BaseSettings from pydantic_settings import BaseSettings
import os import os
DOTENV_PATH = os.path.join(os.path.dirname(__file__), "../.env.local") DOTENV_PATH = os.path.join(os.path.dirname(__file__), "../.env")
class Settings(BaseSettings): class Settings(BaseSettings):

20
backend/docker-compose.deploy.yml
View File

@@ -5,6 +5,15 @@ services:
container_name: MAIA_API container_name: MAIA_API
restart: unless-stopped restart: unless-stopped
command: uvicorn main:app --host 0.0.0.0 --port 8000 command: uvicorn main:app --host 0.0.0.0 --port 8000
environment:
DB_HOST: ${DB_HOST}
DB_USER: ${DB_USER}
DB_NAME: ${DB_NAME}
DB_PASSWORD: ${DB_PASSWORD}
REDIS_URL: ${REDIS_URL}
PEPPER: ${PEPPER}
JWT_SECRET_KEY: ${JWT_SECRET_KEY}
GOOGLE_API_KEY: $GOOGLE_API_KEY}
expose: expose:
- "8000" - "8000"
depends_on: depends_on:
@@ -12,8 +21,6 @@ services:
- redis - redis
networks: networks:
- default - default
env_file:
- ./.env.deploy
labels: labels:
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.maia.rule=Host(`maia.depaoli.id.au`)" - "traefik.http.routers.maia.rule=Host(`maia.depaoli.id.au`)"
@@ -29,6 +36,15 @@ services:
container_name: MAIA_Worker container_name: MAIA_Worker
restart: unless-stopped restart: unless-stopped
command: celery -A core.celery_app worker --loglevel=info command: celery -A core.celery_app worker --loglevel=info
environment:
DB_HOST: ${DB_HOST}
DB_USER: ${DB_USER}
DB_NAME: ${DB_NAME}
DB_PASSWORD: ${DB_PASSWORD}
REDIS_URL: ${REDIS_URL}
PEPPER: ${PEPPER}
JWT_SECRET_KEY: ${JWT_SECRET_KEY}
GOOGLE_API_KEY: $GOOGLE_API_KEY}
depends_on: depends_on:
- db - db
- redis - redis