Paths

Table of Contentst

Diffusion Comm f1d9ec893762

[terraform] Avoid including Terraform state and secrets in keyserver Docker…
f1d9ec893762
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

[terraform] Avoid including Terraform state and secrets in keyserver Docker images

Summary: This addresses part 1 of ENG-8869.

Test Plan:

Docker build: docker build --build-arg HOST_GID=20 --build-arg HOST_UID=501 --build-arg COMM_JSONCONFIG_secrets_alchemy='{"key":"<secret>"}' --build-arg COMM_JSONCONFIG_secrets_walletconnect='{"key":"<secret>"}' --build-arg COMM_JSONCONFIG_secrets_neynar='{"key":"<secret>"}' --build-arg COMM_JSONCONFIG_secrets_geoip_license='{"key":"<secret>"}' --platform linux/arm64 -f keyserver/Dockerfile -t commapp/keyserver:sometag .
Open the build: docker run -it commapp/keyserver:sometag bash
Search for passwords via cd .. && (grep -R password_string . | grep -v node_modules)

Reviewers: will, bartek, varun

Reviewed By: bartek, varun

Subscribers: tomek

Differential Revision: https://phab.comm.dev/D12823

Details

Provenance

Authored on Jul 20 2024, 7:05 PM

Reviewer

Differential Revision

D12823: [terraform] Avoid including Terraform state and secrets in keyserver Docker images

Parents

rCOMM46def1591f85: [terraform] bump staging identity to 0.33-staging

Branches

Unknown

Tags

Unknown

Event Timeline

ashoat committed rCOMMf1d9ec893762: [terraform] Avoid including Terraform state and secrets in keyserver Docker… (authored by ashoat).Jul 22 2024, 1:54 PM

ashoat added an edge: D12823: [terraform] Avoid including Terraform state and secrets in keyserver Docker images.

Changes (1)

Path

Size

rCOMMf1d9ec893762

.dockerignore

Loading...