mirror/formbricks
1
0
Fork 0
mirror of https://github.com/formbricks/formbricks.git synced 2026-03-17 18:02:40 -05:00
Code Issues Packages Projects Releases 138 Wiki Activity
Files
72d34f36786d8643f8530cebcdfb86784aa95fce
formbricks/apps/web/scripts/docker/read-secrets.sh
Matti Nannt f0a0cf531a chore: clean up unused npm dependencies (#7417) 
Co-authored-by: pandeymangg <anshuman.pandey9999@gmail.com>
2026-03-05 10:48:13 +00:00

65 lines
2.8 KiB
Bash
Raw Blame History

This file contains invisible Unicode characters
This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
#!/bin/sh
set -eu
# Build-time fallbacks used only when Docker secrets are unavailable (for example
# in forked PR validations where repository secrets are not exposed).
DEFAULT_DATABASE_URL="postgresql://test:test@localhost:5432/formbricks"
DEFAULT_ENCRYPTION_KEY="0123456789abcdef0123456789abcdef"
DEFAULT_REDIS_URL="redis://localhost:6379"
if [ -f "/run/secrets/database_url" ]; then
IFS= read -r DATABASE_URL < /run/secrets/database_url || true
fi
if [ -z "${DATABASE_URL:-}" ]; then
DATABASE_URL="${DEFAULT_DATABASE_URL}"
echo "⚠️ DATABASE_URL secret not found or empty. Using build-time fallback value."
fi
export DATABASE_URL
if [ -f "/run/secrets/encryption_key" ]; then
IFS= read -r ENCRYPTION_KEY < /run/secrets/encryption_key || true
fi
if [ -z "${ENCRYPTION_KEY:-}" ]; then
ENCRYPTION_KEY="${DEFAULT_ENCRYPTION_KEY}"
echo "⚠️ ENCRYPTION_KEY secret not found or empty. Using build-time fallback value."
fi
export ENCRYPTION_KEY
if [ -f "/run/secrets/redis_url" ]; then
IFS= read -r REDIS_URL < /run/secrets/redis_url || true
fi
if [ -z "${REDIS_URL:-}" ]; then
REDIS_URL="${DEFAULT_REDIS_URL}"
echo "⚠️ REDIS_URL secret not found or empty. Using build-time fallback value."
fi
export REDIS_URL
if [ -f "/run/secrets/sentry_auth_token" ]; then
# Only upload sourcemaps on amd64 platform to avoid duplicate uploads
# Sourcemaps are platform-agnostic, so we only need to upload once
# TARGETARCH is automatically set by Docker during multi-platform builds
if [ "${TARGETARCH:-}" = "amd64" ]; then
IFS= read -r SENTRY_AUTH_TOKEN < /run/secrets/sentry_auth_token || true
SENTRY_AUTH_TOKEN=${SENTRY_AUTH_TOKEN%$'\n'}
export SENTRY_AUTH_TOKEN
echo "✅ Sentry auth token found. Sourcemaps will be uploaded during build (${TARGETARCH} platform)."
echo "🔧 SENTRY_AUTH_TOKEN environment variable exported for build process."
else
echo "✅ Sentry auth token found but skipping upload on ${TARGETARCH:-unknown} platform."
echo " Sourcemaps will only be uploaded on amd64 platform to avoid duplicates."
echo "🔧 Debug IDs will still be injected for proper error correlation."
fi
else
echo "⚠️ SENTRY_AUTH_TOKEN secret not found. Sourcemaps will not be uploaded but Debug IDs will still be injected."
fi
# Verify environment variables are set before starting build
echo " DATABASE_URL: $([ -n "${DATABASE_URL:-}" ] && printf '[SET]' || printf '[NOT SET]')"
echo " ENCRYPTION_KEY: $([ -n "${ENCRYPTION_KEY:-}" ] && printf '[SET]' || printf '[NOT SET]')"
echo " REDIS_URL: $([ -n "${REDIS_URL:-}" ] && printf '[SET]' || printf '[NOT SET]')"
echo " SENTRY_AUTH_TOKEN: $([ -n "${SENTRY_AUTH_TOKEN:-}" ] && printf '[SET]' || printf '[NOT SET]')"
echo " TARGETARCH: $([ -n "${TARGETARCH:-}" ] && printf '%s' "${TARGETARCH}" || printf '[NOT SET]')"
exec "$@"
Reference in New Issue View Git Blame Copy Permalink