Mirrors/woodpecker
1
0
Fork 0
mirror of https://github.com/woodpecker-ci/woodpecker.git synced 2026-03-18 07:56:09 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
51d43512e54238a045e7f4eaadd154d76190c42e
woodpecker/docs/cli/secrets.md
Brad Rydzewski 3c8c330656 added command line utility docs
2015-10-25 15:18:16 -07:00

1.3 KiB
Raw Blame History

Encrypt Secrets

The secure command lets your create a signed and encrypted .drone.sec file. The .drone.sec file is decrypted at runtime and will inject your secrets into your .drone.yml file.

Usage

Create a plaintext .drone.sec.yml file that contains your secret variables:

environment:
  - PASSWORD=foo

Encrypt and generate the .drone.sec file:

drone secure --repo octocat/hello-world

Commit the encrypted .drone.sec file to your repository.

Note the drone secure command will automatically calculate the shasum of your yaml file and store in the .drone.sec file. This prevent secrets from being injected into the build if the Yaml changes.

Arguments

The secure command accepts the following arguments:

  • --in secrets in plain text yaml. defaults to .drone.sec.yml
  • --out encrypted secret file. defaults to .drone.sec
  • --yaml location of your .drone.yml file. defaults to .drone.yml
  • --repo name of your repository required

Shared Secrets

You cannot re-use the same .drone.sec for multiple repositories. You can, however, use the same plaintext secret file for multiple repositories.

cd octocat/hello-world
drone secure --in $HOME/.drone.sec.yml --repo octocat/hello-world

cd octocat/Spoon-Knife
drone secure --in $HOME/.drone.sec.yml --repo octocat/Spoon-Knife
Reference in New Issue View Git Blame Copy Permalink