Clarified the secret generation task.
This commit is contained in:
@@ -28,17 +28,17 @@
|
|||||||
dest: /usr/local/bin/gitea
|
dest: /usr/local/bin/gitea
|
||||||
checksum: "sha256:{{ gitea_checksum_url }}"
|
checksum: "sha256:{{ gitea_checksum_url }}"
|
||||||
|
|
||||||
- name: Pause to save the generated secrets in SOPS
|
- name: Pause to generate and save the secrets in SOPS
|
||||||
ansible.builtin.pause:
|
ansible.builtin.pause:
|
||||||
prompt: |
|
prompt: |
|
||||||
[SECURITY NOTICE]
|
[SECURITY NOTICE]
|
||||||
If this is a fresh install, generate these secrets:
|
If this is a fresh install, generate these secrets:
|
||||||
1. gitea generate secret INTERNAL_TOKEN
|
1. gitea generate secret INTERNAL_TOKEN
|
||||||
2. gitea generate secret JWT_SECRET
|
2. gitea generate secret JWT_SECRET
|
||||||
3. gitea generate secret LFS_JWT_SECRET
|
3. gitea generate secret JWT_SECRET
|
||||||
Copy the following keys into SOPS:
|
Copy the following keys into SOPS:
|
||||||
- gitea_lfs_jwt_secret
|
|
||||||
- gitea_internal_token
|
- gitea_internal_token
|
||||||
|
- gitea_lfs_jwt_secret
|
||||||
- gitea_jwt_secret
|
- gitea_jwt_secret
|
||||||
Press ENTER once done to continue.
|
Press ENTER once done to continue.
|
||||||
when: gitea_internal_token is not defined
|
when: gitea_internal_token is not defined
|
||||||
|
|||||||
Reference in New Issue
Block a user