Comments (4)
maoo
commented on June 11, 2024
2
Thanks @pmonks , the build is green! https://travis-ci.org/symphonyoss/clj-symphony
I saved clojars credentials and added Travis configuration, using repository-specific environment variables (option no. 2).
To answer your question, yes, also the second approach is secure, since:
- it boils down to the same implementation of the first approach (both encrypted and hidden on build logs)
- variables are only visible by the creator, even in the settings page; the repository settings are only accessible by github project administrators; other administrators (that are not the variable creators) can only remove (and/or re-add) the variable, but cannot view its value.
One interesting note; symbols in passwords MUST be escaped, regardless of the approach selected.
I'll finalise the documentation on symphonyoss.atlassian.net before resolving the issue. Thanks again for this.
from clj-symphony.
pmonks
commented on June 11, 2024
1
Clojars is the idiomatic repository for Clojure - I would recommend that over Maven Central unless there's a strongly compelling reason not to use it.
from clj-symphony.
pmonks
commented on June 11, 2024
I've added support for automatic deployment from Travis CI to the project, however @maoo will need to create encrypted environment variables containing the Clojars credentials in order for deployment to occur (right now Travis CI builds will hang at the deploy step, since Leiningen isn't finding those environment variables and falls back on prompting for interactive input). These variables are:
CLOJARS_USERNAME- the username of the Clojars userCLOJARS_PASSWORD- the password of that Clojars user
I've created a Clojars user appropriate for use by the Foundation, and sent those credentials via secure channel to @maoo.
As best I can tell, encrypted environment variables can be defined in TravisCI in one of 2 ways:
- by adding encrypted environment variables to the
.travis.ymlfile and submitting a PR (please reference this issue in the PR subject) - by defining repository-specific environment variables
(though it's not clear to me if the second approach is secure - @maoo do you know?)
In the meantime, I manually ran a Clojars deployment, to confirm that the pipeline is working (it is), so everything should Just Workβ’ once those environment variables are defined and a Travis CI build triggered.
from clj-symphony.
maoo
commented on June 11, 2024
Documentation ready; will be live on the Wiki next week.
from clj-symphony.
Related Issues (7)
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from clj-symphony.