From 304556c1f10f37ba0de805db361591820ea17b20 Mon Sep 17 00:00:00 2001 From: Debian Dev4 Date: Wed, 17 Sep 2025 08:49:43 +0000 Subject: [PATCH] ci: docker_tag=ext --- .env.example | 57 ++++++++++++++++++---------------- .gitea/workflows/build-ext.yml | 15 +++++++-- 2 files changed, 42 insertions(+), 30 deletions(-) diff --git a/.env.example b/.env.example index 1e5d14e0..f7caf8fd 100644 --- a/.env.example +++ b/.env.example @@ -4,36 +4,11 @@ NODE_ENV=production # Configuration IDNOT IDNOT_ANNUARY_BASE_URL=https://qual-api.notaires.fr/annuaire -IDNOT_API_KEY= -IDNOT_CLIENT_ID= -IDNOT_CLIENT_SECRET= # IDNOT_REDIRECT_URI=http://local.4nkweb.com:3004/authorized-client IDNOT_REDIRECT_URI=https://dev4.4nkweb.com/lecoffre/authorized-client IDNOT_TOKEN_URL=https://qual-connexion.idnot.fr/user/IdPOAuth2/token/idnot_idp_v1 IDNOT_API_BASE_URL=https://qual-api.notaires.fr/annuaire -# Configuration OVH -OVH_APP_KEY= -OVH_APP_SECRET= -OVH_CONSUMER_KEY= -OVH_SMS_SERVICE_NAME= - -# Configuration SMS Factor -SMS_FACTOR_TOKEN= - -# Configuration Mailchimp -MAILCHIMP_API_KEY= -MAILCHIMP_KEY= -MAILCHIMP_LIST_ID= - -# Configuration Stripe -STRIPE_SECRET_KEY= -STRIPE_WEBHOOK_SECRET= -STRIPE_STANDARD_SUBSCRIPTION_PRICE_ID= -STRIPE_STANDARD_ANNUAL_SUBSCRIPTION_PRICE_ID= -STRIPE_UNLIMITED_SUBSCRIPTION_PRICE_ID= -STRIPE_UNLIMITED_ANNUAL_SUBSCRIPTION_PRICE_ID= - # Configuration serveur APP_HOST=https://dev4.4nkweb.com/lecoffre # API_BASE_URL=https://demo.4nkweb.com/back @@ -49,7 +24,6 @@ NEXT_PUBLIC_FRONT_APP_HOST=dev4.4nkweb.com NEXT_PUBLIC_FRONT_APP_PORT=443 NEXT_PUBLIC_IDNOT_BASE_URL=https://qual-connexion.idnot.fr NEXT_PUBLIC_IDNOT_AUTHORIZE_ENDPOINT=/IdPOAuth2/authorize/idnot_idp_v1 -NEXT_PUBLIC_IDNOT_CLIENT_ID=28c9a3a8151bef545ebf700ca5222c63d0031ad593097e95c1de202464304a99 NEXT_PUBLIC_BACK_API_PROTOCOL=https:// NEXT_PUBLIC_BACK_API_HOST=dev4.4nkweb.com NEXT_PUBLIC_BACK_API_PORT=443 @@ -75,4 +49,33 @@ SIGNER_WS_URL=https://dev4.4nkweb.com/signer/ # IHM URLS # VITE_BOOTSTRAPURL=http://sdk_relay:8090/ -VITE_BOOTSTRAPURL=https://dev4.4nkweb.com/ws/ \ No newline at end of file +VITE_BOOTSTRAPURL=https://dev4.4nkweb.com/ws/ + +# ================================= /!\ sensible ======================== + +IDNOT_API_KEY= +IDNOT_CLIENT_ID= +IDNOT_CLIENT_SECRET= +NEXT_PUBLIC_IDNOT_CLIENT_ID= + +# Configuration OVH +OVH_APP_KEY= +OVH_APP_SECRET= +OVH_CONSUMER_KEY= +OVH_SMS_SERVICE_NAME= + +# Configuration SMS Factor +SMS_FACTOR_TOKEN= + +# Configuration Mailchimp +MAILCHIMP_API_KEY= +MAILCHIMP_KEY= +MAILCHIMP_LIST_ID= + +# Configuration Stripe +STRIPE_SECRET_KEY= +STRIPE_WEBHOOK_SECRET= +STRIPE_STANDARD_SUBSCRIPTION_PRICE_ID= +STRIPE_STANDARD_ANNUAL_SUBSCRIPTION_PRICE_ID= +STRIPE_UNLIMITED_SUBSCRIPTION_PRICE_ID= +STRIPE_UNLIMITED_ANNUAL_SUBSCRIPTION_PRICE_ID= \ No newline at end of file diff --git a/.gitea/workflows/build-ext.yml b/.gitea/workflows/build-ext.yml index 9a106a4e..4c0979b1 100644 --- a/.gitea/workflows/build-ext.yml +++ b/.gitea/workflows/build-ext.yml @@ -29,15 +29,17 @@ jobs: echo "SSH_AUTH_SOCK=$SSH_AUTH_SOCK" >> "$GITHUB_ENV" echo "SSH_AGENT_PID=$SSH_AGENT_PID" >> "$GITHUB_ENV" - - name: Load .env and export NEXT_PUBLIC_* variables + - name: Load .env(.example) and export NEXT_PUBLIC_* variables shell: bash run: | set -euo pipefail + set -a if [ -f .env ]; then - set -a . ./.env - set +a + elif [ -f .env.example ]; then + . ./.env.example fi + set +a echo "Environment NEXT_PUBLIC_* available:" || true env | grep '^NEXT_PUBLIC_' || true @@ -80,6 +82,13 @@ jobs: # 2) Fallback/override possibles depuis les secrets CI pour certaines clés critiques [ -n "${{ secrets.NEXT_PUBLIC_4NK_URL || '' }}" ] && buildArgs+=(--build-arg NEXT_PUBLIC_4NK_URL="${{ secrets.NEXT_PUBLIC_4NK_URL }}") [ -n "${{ secrets.NEXT_PUBLIC_4NK_IFRAME_URL || '' }}" ] && buildArgs+=(--build-arg NEXT_PUBLIC_4NK_IFRAME_URL="${{ secrets.NEXT_PUBLIC_4NK_IFRAME_URL }}") + [ -n "${{ secrets.NEXT_PUBLIC_IDNOT_CLIENT_ID || '' }}" ] && buildArgs+=(--build-arg NEXT_PUBLIC_IDNOT_CLIENT_ID="${{ secrets.NEXT_PUBLIC_IDNOT_CLIENT_ID }}") + + # 3) Fail si aucune variable NEXT_PUBLIC_* n'est définie + if ! env | grep -q '^NEXT_PUBLIC_'; then + echo "Aucune variable NEXT_PUBLIC_* détectée (ni .env/.env.example ni secrets). Abandon." >&2 + exit 1 + fi docker build --target ext --ssh default "${buildArgs[@]}" \ -t git.4nkweb.com/4nk/lecoffre-front:${{ steps.tag.outputs.TAG }} \