From d895433a65bac7064aee901ce931f4bb056088b9 Mon Sep 17 00:00:00 2001 From: vchikalkin Date: Tue, 14 Oct 2025 20:01:12 +0300 Subject: [PATCH] chore: update deploy.yml to enhance .env file creation process - Renamed steps for clarity in the deployment workflow. - Updated the creation of the .env files to use secrets for sensitive URLs instead of hardcoded values, improving security and flexibility. --- .github/workflows/deploy.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index 4b4b04e..c1787a0 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -37,7 +37,7 @@ jobs: cache_proxy: - 'apps/cache-proxy/**' # ----------------------------------------------------------- - - name: Create fake .env file for build + - name: Create .env file for build run: | echo "BOT_TOKEN=fake" > .env echo "LOGIN_GRAPHQL=fake" >> .env @@ -48,9 +48,9 @@ jobs: echo "BOT_URL=http://localhost:3000" >> .env echo "REDIS_PASSWORD=fake" >> .env echo "BOT_PROVIDER_TOKEN=fake" >> .env - echo "OFFER_URL=http://localhost:3000/offer" >> .env - echo "PRIVACY_URL=http://localhost:3000/privacy" >> .env - echo "SUPPORT_TELEGRAM_URL=http://t.me/support" >> .env + echo "OFFER_URL=${{ secrets.OFFER_URL }}" >> .env + echo "PRIVACY_URL=${{ secrets.PRIVACY_URL }}" >> .env + echo "SUPPORT_TELEGRAM_URL=${{ secrets.SUPPORT_TELEGRAM_URL }}" >> .env - name: Set image tags id: vars @@ -115,7 +115,7 @@ jobs: ssh -i ~/.ssh/id_rsa -p ${{ secrets.VPS_PORT }} -o StrictHostKeyChecking=no ${{ secrets.VPS_USER }}@${{ secrets.VPS_HOST }} "mkdir -p /home/${{ secrets.VPS_USER }}/zapishis" # --- НОВОЕ: Шаг 2: Создание основного .env БЕЗ ТЕГОВ --- - - name: Create real .env file (No Tags) + - name: Create .env file for deploy run: | # Включаем все секреты, КРОМЕ тегов echo "BOT_TOKEN=${{ secrets.BOT_TOKEN }}" > .env