Commit a128ba74 authored by Jason Plum's avatar Jason Plum

Merge branch 'le-secret' into 'master'

Add lets-encrypt pages private secret to secret generation

See merge request !785
parents d9c8cd7b 081ba33a
Pipeline #60917881 (#4894) passed with stages
in 33 minutes and 55 seconds
---
title: Add support for generating the new letsencrpt rails secret for GitLab 12.0
merge_request: 785
author:
type: added
......@@ -66,6 +66,7 @@ if [ -n "$env" ]; then
otp_key_base=$(gen_random 'a-f0-9' 128) # equavilent to secureRandom.hex(64)
db_key_base=$(gen_random 'a-f0-9' 128) # equavilent to secureRandom.hex(64)
openid_connect_signing_key=$(openssl genrsa 2048);
lets_encrypt_private_key=$(openssl genrsa 2048);
cat << EOF > secrets.yml
$env:
......@@ -73,6 +74,8 @@ $env:
otp_key_base: $otp_key_base
db_key_base: $db_key_base
openid_connect_signing_key: |
$(openssl genrsa 2048 | awk '{print " " $0}')
lets_encrypt_private_key: |
$(openssl genrsa 2048 | awk '{print " " $0}')
EOF
generate_secret_if_needed {{ template "gitlab.rails-secrets.secret" . }} --from-file secrets.yml
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment