Nixius
/
authelia
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Remove OAuth client secrets from CI build process - CLIENT_SECRET_PORTAINER/HEADSCALE/HEADADMIN not needed during build - These secrets are handled by Docker Swarm at runtime - Fixes Authelia container startup issues
ci/woodpecker/push/woodpecker Pipeline failed Details

This commit is contained in:
colin 2025-06-11 15:53:55 -04:00
parent 56d258d992
commit 426bb996ac
1 changed files with 4 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
.woodpecker.yml
View File

@ -41,13 +41,7 @@ steps:
from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
IDENTITY_PROVIDERS_OIDC_JWKS_KEY: IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
# Client Secrets # OAuth Client Secrets removed - handled by Docker Swarm secrets at runtime
CLIENT_SECRET_HEADSCALE:
from_secret: CLIENT_SECRET_HEADSCALE
CLIENT_SECRET_HEADADMIN:
from_secret: CLIENT_SECRET_HEADADMIN
CLIENT_SECRET_PORTAINER:
from_secret: CLIENT_SECRET_PORTAINER
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
commands: commands:
@ -88,13 +82,7 @@ steps:
from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
IDENTITY_PROVIDERS_OIDC_JWKS_KEY: IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
# Client Secrets # OAuth Client Secrets removed - handled by Docker Swarm secrets at runtime
CLIENT_SECRET_HEADSCALE:
from_secret: CLIENT_SECRET_HEADSCALE
CLIENT_SECRET_HEADADMIN:
from_secret: CLIENT_SECRET_HEADADMIN
CLIENT_SECRET_PORTAINER:
from_secret: CLIENT_SECRET_PORTAINER
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
commands: commands:
@ -156,13 +144,7 @@ steps:
from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
IDENTITY_PROVIDERS_OIDC_JWKS_KEY: IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
# Client Secrets # OAuth Client Secrets removed - handled by Docker Swarm secrets at runtime
CLIENT_SECRET_HEADSCALE:
from_secret: CLIENT_SECRET_HEADSCALE
CLIENT_SECRET_HEADADMIN:
from_secret: CLIENT_SECRET_HEADADMIN
CLIENT_SECRET_PORTAINER:
from_secret: CLIENT_SECRET_PORTAINER
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
commands: commands:
@ -203,13 +185,7 @@ steps:
from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY from_secret: IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY
IDENTITY_PROVIDERS_OIDC_JWKS_KEY: IDENTITY_PROVIDERS_OIDC_JWKS_KEY:
from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY from_secret: IDENTITY_PROVIDERS_OIDC_JWKS_KEY
# Client Secrets # OAuth Client Secrets removed - handled by Docker Swarm secrets at runtime
CLIENT_SECRET_HEADSCALE:
from_secret: CLIENT_SECRET_HEADSCALE
CLIENT_SECRET_HEADADMIN:
from_secret: CLIENT_SECRET_HEADADMIN
CLIENT_SECRET_PORTAINER:
from_secret: CLIENT_SECRET_PORTAINER
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
commands: commands: