Add .kamal/secrets on kamal init
This commit is contained in:
Donal McBreen
@@ -148,9 +148,16 @@ class Kamal::Cli::Main < Kamal::Cli::Base
|
|||||||
puts "Created configuration file in config/deploy.yml"
|
puts "Created configuration file in config/deploy.yml"
|
||||||
end
|
end
|
||||||
|
|
||||||
unless (deploy_file = Pathname.new(File.expand_path(".env"))).exist?
|
unless (secrets_file = Pathname.new(File.expand_path(".kamal/secrets"))).exist?
|
||||||
FileUtils.cp_r Pathname.new(File.expand_path("templates/template.env", __dir__)), deploy_file
|
FileUtils.mkdir_p secrets_file.dirname
|
||||||
puts "Created .env file"
|
FileUtils.cp_r Pathname.new(File.expand_path("templates/secrets", __dir__)), secrets_file
|
||||||
|
puts "Created .kamal/secrets file"
|
||||||
|
|
||||||
|
gitignore = Pathname.new(File.expand_path(".gitignore"))
|
||||||
|
if gitignore.exist? && !gitignore.read.include?(".kamal/secrets")
|
||||||
|
gitignore.open("a") { |f| f.puts "\n.kamal/secrets*" }
|
||||||
|
puts "Added .kamal/secrets* to .gitignore"
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
unless (hooks_dir = Pathname.new(File.expand_path(".kamal/hooks"))).exist?
|
unless (hooks_dir = Pathname.new(File.expand_path(".kamal/hooks"))).exist?
|
||||||
|
|||||||
6
lib/kamal/cli/templates/secrets
Normal file
6
lib/kamal/cli/templates/secrets
Normal file
@@ -0,0 +1,6 @@
|
|||||||
|
# SECRETS=$(kamal secrets --adapter 1password --from Vault/Item Section1/KAMAL_REGISTRY_PASSWORD Section2/RAILS_MASTER_KEY)
|
||||||
|
# KAMAL_REGISTRY_PASSWORD=$(kamal secrets extract KAMAL_REGISTRY_PASSWORD ${SECRETS})
|
||||||
|
# KAMAL_REGISTRY_PASSWORD=$(kamal secrets extract RAILS_MASTER_KEY ${SECRETS})
|
||||||
|
|
||||||
|
KAMAL_REGISTRY_PASSWORD=change-this
|
||||||
|
RAILS_MASTER_KEY=another-env
|
||||||
@@ -1,2 +0,0 @@
|
|||||||
KAMAL_REGISTRY_PASSWORD=change-this
|
|
||||||
RAILS_MASTER_KEY=another-env
|
|
||||||
@@ -384,42 +384,42 @@ class CliMainTest < CliTestCase
|
|||||||
end
|
end
|
||||||
|
|
||||||
test "init" do
|
test "init" do
|
||||||
Pathname.any_instance.expects(:exist?).returns(false).times(3)
|
in_dummy_git_repo do
|
||||||
Pathname.any_instance.stubs(:mkpath)
|
|
||||||
FileUtils.stubs(:mkdir_p)
|
|
||||||
FileUtils.stubs(:cp_r)
|
|
||||||
FileUtils.stubs(:cp)
|
|
||||||
|
|
||||||
run_command("init").tap do |output|
|
run_command("init").tap do |output|
|
||||||
assert_match /Created configuration file in config\/deploy.yml/, output
|
assert_match "Created configuration file in config/deploy.yml", output
|
||||||
assert_match /Created \.env file/, output
|
assert_match "Created .kamal/secrets file", output
|
||||||
|
assert_match "Added .kamal/secrets* to .gitignore", output
|
||||||
|
end
|
||||||
|
|
||||||
|
assert_file "config/deploy.yml", "service: my-app"
|
||||||
|
assert_file ".kamal/secrets", "KAMAL_REGISTRY_PASSWORD=change-this"
|
||||||
|
assert_file ".gitignore", %r{\n.kamal/secrets\*\n}
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
test "init with existing config" do
|
test "init with existing config" do
|
||||||
Pathname.any_instance.expects(:exist?).returns(true).times(3)
|
in_dummy_git_repo do
|
||||||
|
run_command("init")
|
||||||
|
|
||||||
run_command("init").tap do |output|
|
run_command("init").tap do |output|
|
||||||
assert_match /Config file already exists in config\/deploy.yml \(remove first to create a new one\)/, output
|
assert_match /Config file already exists in config\/deploy.yml \(remove first to create a new one\)/, output
|
||||||
|
assert_no_match /Added .kamal\/secrets/, output
|
||||||
|
end
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
test "init with bundle option" do
|
test "init with bundle option" do
|
||||||
Pathname.any_instance.expects(:exist?).returns(false).times(4)
|
in_dummy_git_repo do
|
||||||
Pathname.any_instance.stubs(:mkpath)
|
|
||||||
FileUtils.stubs(:mkdir_p)
|
|
||||||
FileUtils.stubs(:cp_r)
|
|
||||||
FileUtils.stubs(:cp)
|
|
||||||
|
|
||||||
run_command("init", "--bundle").tap do |output|
|
run_command("init", "--bundle").tap do |output|
|
||||||
assert_match /Created configuration file in config\/deploy.yml/, output
|
assert_match "Created configuration file in config/deploy.yml", output
|
||||||
assert_match /Created \.env file/, output
|
assert_match "Created .kamal/secrets file", output
|
||||||
assert_match /Adding Kamal to Gemfile and bundle/, output
|
assert_match /Adding Kamal to Gemfile and bundle/, output
|
||||||
assert_match /bundle add kamal/, output
|
assert_match /bundle add kamal/, output
|
||||||
assert_match /bundle binstubs kamal/, output
|
assert_match /bundle binstubs kamal/, output
|
||||||
assert_match /Created binstub file in bin\/kamal/, output
|
assert_match /Created binstub file in bin\/kamal/, output
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
end
|
||||||
|
|
||||||
test "init with bundle option and existing binstub" do
|
test "init with bundle option and existing binstub" do
|
||||||
Pathname.any_instance.expects(:exist?).returns(true).times(4)
|
Pathname.any_instance.expects(:exist?).returns(true).times(4)
|
||||||
@@ -523,4 +523,18 @@ class CliMainTest < CliTestCase
|
|||||||
stdouted { Kamal::Cli::Main.start }
|
stdouted { Kamal::Cli::Main.start }
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def in_dummy_git_repo
|
||||||
|
Dir.mktmpdir do |tmpdir|
|
||||||
|
Dir.chdir(tmpdir) do
|
||||||
|
`git init`
|
||||||
|
`echo '/.bundle\n/log/*\n/tmp/*' > .gitignore`
|
||||||
|
yield
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
def assert_file(file, content)
|
||||||
|
assert_match content, File.read(file)
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
|||||||
Reference in New Issue
Block a user