Auto-load DATABASE_URL from secrets for builds
This commit is contained in:
Tero Halla-aho
parent
8405389718
commit
bf3c479dd4
3 changed files with 51 additions and 0 deletions
45
lib/loadSecrets.ts
Normal file
45
lib/loadSecrets.ts
Normal file
|
|
@ -0,0 +1,45 @@
|
|||
import fs from 'fs';
|
||||
import path from 'path';
|
||||
import { execFileSync } from 'child_process';
|
||||
|
||||
function parseDotenv(contents: string) {
|
||||
contents
|
||||
.split('\n')
|
||||
.map((line) => line.trim())
|
||||
.filter((line) => line && !line.startsWith('#'))
|
||||
.forEach((line) => {
|
||||
const idx = line.indexOf('=');
|
||||
if (idx === -1) return;
|
||||
const key = line.slice(0, idx).trim();
|
||||
let value = line.slice(idx + 1).trim();
|
||||
if (!key || key in process.env) return;
|
||||
if ((value.startsWith('"') && value.endsWith('"')) || (value.startsWith("'") && value.endsWith("'"))) {
|
||||
value = value.slice(1, -1);
|
||||
}
|
||||
process.env[key] = value;
|
||||
});
|
||||
}
|
||||
|
||||
export function loadLocalSecrets() {
|
||||
const root = process.cwd();
|
||||
const plainPath = path.join(root, 'creds', 'secrets.env');
|
||||
const encPath = path.join(root, 'creds', 'secrets.enc.env');
|
||||
|
||||
if (fs.existsSync(plainPath)) {
|
||||
try {
|
||||
parseDotenv(fs.readFileSync(plainPath, 'utf8'));
|
||||
return;
|
||||
} catch {
|
||||
// ignore and try encrypted
|
||||
}
|
||||
}
|
||||
|
||||
if (fs.existsSync(encPath) && !process.env.SKIP_SOPS_AUTOLOAD) {
|
||||
try {
|
||||
const output = execFileSync('sops', ['-d', encPath], { encoding: 'utf8' });
|
||||
parseDotenv(output);
|
||||
} catch {
|
||||
// silent fail if sops/key not available
|
||||
}
|
||||
}
|
||||
}
|
||||
|
|
@ -1,6 +1,9 @@
|
|||
import { PrismaClient } from '@prisma/client';
|
||||
import { PrismaPg } from '@prisma/adapter-pg';
|
||||
import { Pool } from 'pg';
|
||||
import { loadLocalSecrets } from './loadSecrets';
|
||||
|
||||
loadLocalSecrets();
|
||||
|
||||
const globalForPrisma = globalThis as unknown as { prisma?: PrismaClient };
|
||||
|
||||
|
|
|
|||
|
|
@ -2,6 +2,9 @@
|
|||
// npm install --save-dev prisma dotenv
|
||||
import 'dotenv/config';
|
||||
import { defineConfig } from 'prisma/config';
|
||||
import { loadLocalSecrets } from './lib/loadSecrets';
|
||||
|
||||
loadLocalSecrets();
|
||||
|
||||
const databaseUrl = process.env.DATABASE_URL || 'postgresql://localhost:5432/lomavuokraus?sslmode=disable';
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue