name: Debug Secrets on: workflow_dispatch: push: branches: [ main ] jobs: debug-secrets: runs-on: ubuntu-latest steps: - name: Checkout code uses: actions/checkout@v3 - name: Debug Environment Variables run: | echo "🔍 Checking if secrets are available..." echo "" echo "📊 VARIABLES:" echo "✅ NODE_ENV: ${{ vars.NODE_ENV }}" echo "✅ LOG_LEVEL: ${{ vars.LOG_LEVEL }}" echo "✅ NEXT_PUBLIC_BASE_URL: ${{ vars.NEXT_PUBLIC_BASE_URL }}" echo "✅ NEXT_PUBLIC_UMAMI_URL: ${{ vars.NEXT_PUBLIC_UMAMI_URL }}" echo "✅ NEXT_PUBLIC_UMAMI_WEBSITE_ID: ${{ vars.NEXT_PUBLIC_UMAMI_WEBSITE_ID }}" echo "✅ MY_EMAIL: ${{ vars.MY_EMAIL }}" echo "✅ MY_INFO_EMAIL: ${{ vars.MY_INFO_EMAIL }}" echo "" echo "🔐 SECRETS:" if [ -n "${{ secrets.MY_PASSWORD }}" ]; then echo "✅ MY_PASSWORD: Set (length: ${#MY_PASSWORD})" else echo "❌ MY_PASSWORD: Not set" fi if [ -n "${{ secrets.MY_INFO_PASSWORD }}" ]; then echo "✅ MY_INFO_PASSWORD: Set (length: ${#MY_INFO_PASSWORD})" else echo "❌ MY_INFO_PASSWORD: Not set" fi if [ -n "${{ secrets.ADMIN_BASIC_AUTH }}" ]; then echo "✅ ADMIN_BASIC_AUTH: Set (length: ${#ADMIN_BASIC_AUTH})" else echo "❌ ADMIN_BASIC_AUTH: Not set" fi echo "" echo "📋 Summary:" echo "Variables: 7 configured" echo "Secrets: 3 configured" echo "Total environment variables: 10" env: NODE_ENV: ${{ vars.NODE_ENV }} LOG_LEVEL: ${{ vars.LOG_LEVEL }} NEXT_PUBLIC_BASE_URL: ${{ vars.NEXT_PUBLIC_BASE_URL }} NEXT_PUBLIC_UMAMI_URL: ${{ vars.NEXT_PUBLIC_UMAMI_URL }} NEXT_PUBLIC_UMAMI_WEBSITE_ID: ${{ vars.NEXT_PUBLIC_UMAMI_WEBSITE_ID }} MY_EMAIL: ${{ vars.MY_EMAIL }} MY_INFO_EMAIL: ${{ vars.MY_INFO_EMAIL }} MY_PASSWORD: ${{ secrets.MY_PASSWORD }} MY_INFO_PASSWORD: ${{ secrets.MY_INFO_PASSWORD }} ADMIN_BASIC_AUTH: ${{ secrets.ADMIN_BASIC_AUTH }} - name: Test Docker Environment run: | echo "🐳 Testing Docker environment with secrets..." # Create a test container to verify environment variables docker run --rm \ -e NODE_ENV=production \ -e DATABASE_URL=postgresql://portfolio_user:portfolio_pass@postgres:5432/portfolio_db?schema=public \ -e REDIS_URL=redis://redis:6379 \ -e NEXT_PUBLIC_BASE_URL="${{ secrets.NEXT_PUBLIC_BASE_URL }}" \ -e MY_EMAIL="${{ secrets.MY_EMAIL }}" \ -e MY_INFO_EMAIL="${{ secrets.MY_INFO_EMAIL }}" \ -e MY_PASSWORD="${{ secrets.MY_PASSWORD }}" \ -e MY_INFO_PASSWORD="${{ secrets.MY_INFO_PASSWORD }}" \ -e ADMIN_BASIC_AUTH="${{ secrets.ADMIN_BASIC_AUTH }}" \ alpine:latest sh -c ' echo "Environment variables in container:" echo "NODE_ENV: $NODE_ENV" echo "DATABASE_URL: $DATABASE_URL" echo "REDIS_URL: $REDIS_URL" echo "NEXT_PUBLIC_BASE_URL: $NEXT_PUBLIC_BASE_URL" echo "MY_EMAIL: $MY_EMAIL" echo "MY_INFO_EMAIL: $MY_INFO_EMAIL" echo "MY_PASSWORD: [HIDDEN - length: ${#MY_PASSWORD}]" echo "MY_INFO_PASSWORD: [HIDDEN - length: ${#MY_INFO_PASSWORD}]" echo "ADMIN_BASIC_AUTH: [HIDDEN - length: ${#ADMIN_BASIC_AUTH}]" ' - name: Validate Secret Formats run: | echo "🔐 Validating secret formats..." # Check NEXT_PUBLIC_BASE_URL format if [[ "${{ secrets.NEXT_PUBLIC_BASE_URL }}" =~ ^https?:// ]]; then echo "✅ NEXT_PUBLIC_BASE_URL: Valid URL format" else echo "❌ NEXT_PUBLIC_BASE_URL: Invalid URL format (should start with http:// or https://)" fi # Check email formats if [[ "${{ secrets.MY_EMAIL }}" =~ ^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$ ]]; then echo "✅ MY_EMAIL: Valid email format" else echo "❌ MY_EMAIL: Invalid email format" fi if [[ "${{ secrets.MY_INFO_EMAIL }}" =~ ^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$ ]]; then echo "✅ MY_INFO_EMAIL: Valid email format" else echo "❌ MY_INFO_EMAIL: Invalid email format" fi # Check ADMIN_BASIC_AUTH format (should be username:password) if [[ "${{ secrets.ADMIN_BASIC_AUTH }}" =~ ^[^:]+:.+$ ]]; then echo "✅ ADMIN_BASIC_AUTH: Valid format (username:password)" else echo "❌ ADMIN_BASIC_AUTH: Invalid format (should be username:password)" fi