Fix multiple issues and work around abra bug.

2023-10-03 17:20:39 -07:00 · 2023-10-03 17:20:39 -07:00 · dfa48a0a47
parent 84e3c0ceff
commit dfa48a0a47
3 changed files with 15 additions and 12 deletions
--- a/abra.sh
+++ b/abra.sh
@ -1,27 +1,27 @@
 #!/bin/bash

-export ENTRYPOINT_CONF_VERSION=v6
+export ENTRYPOINT_CONF_VERSION=v7

 assets() {
-  export OTP_SECRET=$(cat /run/secrets/otp_secret)
-  export SECRET_KEY_BASE=$(cat /run/secrets/secret_key_base)
-  export DB_PASS=$(cat /run/secrets/db_password)
+  set -x  OTP_SECRET $(cat /run/secrets/otp_secret)
+  set -x  SECRET_KEY_BASE $(cat /run/secrets/secret_key_base)
+  set -x  DB_PASS $(cat /run/secrets/db_password)

  RAILS_ENV=production bundle exec rails assets:precompile
 }

 setup() {
-  export OTP_SECRET=$(cat /run/secrets/otp_secret)
-  export SECRET_KEY_BASE=$(cat /run/secrets/secret_key_base)
-  export DB_PASS=$(cat /run/secrets/db_password)
+  set -x  OTP_SECRET $(cat /run/secrets/otp_secret)
+  set -x  SECRET_KEY_BASE $(cat /run/secrets/secret_key_base)
+  set -x  DB_PASS $(cat /run/secrets/db_password)

  RAILS_ENV=production bundle exec rake db:setup
 }

 admin() {
-  export OTP_SECRET=$(cat /run/secrets/otp_secret)
-  export SECRET_KEY_BASE=$(cat /run/secrets/secret_key_base)
-  export DB_PASS=$(cat /run/secrets/db_password)
+  set -x  OTP_SECRET $(cat /run/secrets/otp_secret)
+  set -x  SECRET_KEY_BASE $(cat /run/secrets/secret_key_base)
+  set -x  DB_PASS $(cat /run/secrets/db_password)

  RAILS_ENV=production bin/tootctl accounts create "$1" --email "$2" --confirmed --role admin
 }
--- a/compose.yml
+++ b/compose.yml
@ -45,6 +45,7 @@ services:
      - DB_NAME
      - DB_PORT
      - DB_USER
+      - DB_PASS_FILE=/run/secrets/db_password
      - DEFAULT_LOCALE
      - EMAIL_DOMAIN_ALLOWLIST
      - EMAIL_DOMAIN_DENYLIST
@ -67,6 +68,7 @@ services:
      - MAX_SESSION_ACTIVATIONS
      - MAX_TOOT_CHARS
      - OAUTH_REDIRECT_AT_SIGN_IN
+      - OTP_SECRET_FILE=/run/secrets/otp_secret
      - OIDC_AUTH_ENDPOINT
      - OIDC_CLIENT_AUTH_METHOD
      - OIDC_CLIENT_ID
--- a/entrypoint.sh.tmpl
+++ b/entrypoint.sh.tmpl
@ -23,11 +23,12 @@ file_env() {
  unset "$fileVar"
 }

-export DB_PASS=$(cat /run/secrets/db_password)
-
 # for sidekiq service bundle exec env var threading
 file_env "OTP_SECRET"
 file_env "SECRET_KEY_BASE"
+file_env "DB_PASS"
+file_env "SMTP_PASSWORD"
+file_env "VAPID_PRIVATE_KEY"

 {{ if eq (env "OIDC_ENABLED") "true" }}
 file_env "OIDC_CLIENT_SECRET"