mirror/TimeTracker
1
0
Fork 0
mirror of https://github.com/DRYTRIX/TimeTracker.git synced 2026-05-19 21:00:15 -05:00
Code Issues Packages Projects Releases Wiki Activity

ci(docker): inject donate-hide public key from secret in release and develop workflows

Browse Source 
- Add optional step before Docker build: write DONATE_HIDE_PUBLIC_KEY_PEM secret to donate_hide_public.pem
- Image then contains key at /app/donate_hide_public.pem when secret is set; build still succeeds if unset

Co-authored-by: Cursor <cursoragent@cursor.com>
This commit is contained in:
Dries Peeters
2026-02-08 14:00:39 +01:00
parent a7f2fec930
commit 4ce27b9334
2 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/cd-development.yml
+11
View File
@@ -167,6 +167,17 @@ jobs:
echo "version=$VERSION" >> $GITHUB_OUTPUT
echo "📦 Building version: $VERSION"
- name: Inject donate-hide public key (optional)
env:
DONATE_HIDE_PUBLIC_KEY_PEM: ${{ secrets.DONATE_HIDE_PUBLIC_KEY_PEM }}
run: |
if [ -n "$DONATE_HIDE_PUBLIC_KEY_PEM" ]; then
echo "✅ DONATE_HIDE_PUBLIC_KEY_PEM set — writing donate_hide_public.pem for Docker build"
echo "$DONATE_HIDE_PUBLIC_KEY_PEM" > donate_hide_public.pem
else
echo "⚠️ DONATE_HIDE_PUBLIC_KEY_PEM not set — Support visibility verification disabled in image"
fi
- name: Build and push Docker image
uses: docker/build-push-action@v5
with:
.github/workflows/cd-release.yml
+12
View File
@@ -474,6 +474,18 @@ jobs:
echo " • Users can still opt-in/opt-out of telemetry via admin dashboard"
echo ""
- name: Inject donate-hide public key (optional)
env:
DONATE_HIDE_PUBLIC_KEY_PEM: ${{ secrets.DONATE_HIDE_PUBLIC_KEY_PEM }}
run: |
if [ -n "$DONATE_HIDE_PUBLIC_KEY_PEM" ]; then
echo "✅ DONATE_HIDE_PUBLIC_KEY_PEM secret set — writing donate_hide_public.pem for Docker build"
echo "$DONATE_HIDE_PUBLIC_KEY_PEM" > donate_hide_public.pem
echo " → File will be copied into image at /app/donate_hide_public.pem (DONATE_HIDE_PUBLIC_KEY_FILE)"
else
echo "⚠️ DONATE_HIDE_PUBLIC_KEY_PEM not set — Support visibility code verification will be disabled in image"
fi
- name: Build and push Docker image
uses: docker/build-push-action@v5
with: