Update workflows to match actual Variables and Secrets configuration

- Use Variables for non-sensitive data (NODE_ENV, LOG_LEVEL, URLs, emails) - Use Secrets for sensitive data (passwords, auth tokens) - Add all configured variables: NODE_ENV, LOG_LEVEL, UMAMI analytics - Update verification checks to match actual configuration - Improve debug workflow to show Variables vs Secrets clearly - Fix environment variable mapping in Docker Compose deployment
2025-09-13 00:16:43 +02:00
parent e245e8afe1
commit 4ccb2b146d
2 changed files with 48 additions and 33 deletions
--- a/.gitea/workflows/ci-cd.yml
+++ b/.gitea/workflows/ci-cd.yml
@@ -86,28 +86,48 @@ jobs:
      - name: Verify secrets and variables before deployment
        run: |
          echo "🔍 Verifying secrets and variables..."
-          if [ -z "${{ secrets.NEXT_PUBLIC_BASE_URL }}" ] && [ -z "${{ vars.NEXT_PUBLIC_BASE_URL }}" ]; then
-            echo "❌ NEXT_PUBLIC_BASE_URL is missing in both secrets and variables!"
-            echo "Please add it to either Settings → Secrets or Settings → Variables"
+          
+          # Check Variables
+          if [ -z "${{ vars.NEXT_PUBLIC_BASE_URL }}" ]; then
+            echo "❌ NEXT_PUBLIC_BASE_URL variable is missing!"
            exit 1
          fi
-          if [ -z "${{ secrets.MY_EMAIL }}" ]; then
-            echo "❌ MY_EMAIL secret is missing!"
+          if [ -z "${{ vars.MY_EMAIL }}" ]; then
+            echo "❌ MY_EMAIL variable is missing!"
+            exit 1
+          fi
+          if [ -z "${{ vars.MY_INFO_EMAIL }}" ]; then
+            echo "❌ MY_INFO_EMAIL variable is missing!"
+            exit 1
+          fi
+          
+          # Check Secrets
+          if [ -z "${{ secrets.MY_PASSWORD }}" ]; then
+            echo "❌ MY_PASSWORD secret is missing!"
+            exit 1
+          fi
+          if [ -z "${{ secrets.MY_INFO_PASSWORD }}" ]; then
+            echo "❌ MY_INFO_PASSWORD secret is missing!"
            exit 1
          fi
          if [ -z "${{ secrets.ADMIN_BASIC_AUTH }}" ]; then
            echo "❌ ADMIN_BASIC_AUTH secret is missing!"
            exit 1
          fi
+          
          echo "✅ All required secrets and variables are present"

      - name: Start services with Docker Compose
        run: |
          docker-compose up -d
        env:
-          NEXT_PUBLIC_BASE_URL: ${{ secrets.NEXT_PUBLIC_BASE_URL || vars.NEXT_PUBLIC_BASE_URL }}
-          MY_EMAIL: ${{ secrets.MY_EMAIL }}
-          MY_INFO_EMAIL: ${{ secrets.MY_INFO_EMAIL }}
+          NODE_ENV: ${{ vars.NODE_ENV }}
+          LOG_LEVEL: ${{ vars.LOG_LEVEL }}
+          NEXT_PUBLIC_BASE_URL: ${{ vars.NEXT_PUBLIC_BASE_URL }}
+          NEXT_PUBLIC_UMAMI_URL: ${{ vars.NEXT_PUBLIC_UMAMI_URL }}
+          NEXT_PUBLIC_UMAMI_WEBSITE_ID: ${{ vars.NEXT_PUBLIC_UMAMI_WEBSITE_ID }}
+          MY_EMAIL: ${{ vars.MY_EMAIL }}
+          MY_INFO_EMAIL: ${{ vars.MY_INFO_EMAIL }}
          MY_PASSWORD: ${{ secrets.MY_PASSWORD }}
          MY_INFO_PASSWORD: ${{ secrets.MY_INFO_PASSWORD }}
          ADMIN_BASIC_AUTH: ${{ secrets.ADMIN_BASIC_AUTH }}