Update .gitea/workflows/deploy.yml

2025-08-04 14:24:44 +00:00
parent 650859eab2
commit c7d83e4749
1 changed files with 29 additions and 0 deletions
--- a/.gitea/workflows/deploy.yml
+++ b/.gitea/workflows/deploy.yml
@@ -4,6 +4,12 @@ on:
      ssh-private-key:
        required: true
        type: string
+      certificate-pem:
+        required: false
+        type: string
+      private-key-pem:
+        required: false
+        type: string
    inputs:
      image:
        required: false
@@ -70,6 +76,29 @@ jobs:
      - name: Append kamal registry password
        run: echo "KAMAL_REGISTRY_PASSWORD=${{ inputs.password }}" >> .kamal/secrets.${{ inputs.environment }}

+      - name: Add optional PEM secrets to .env
+        run: |
+          ENV_FILE=".kamal/secrets.${{ inputs.environment }}"
+
+          # Add certificate-pem if present
+          if [[ -n "${{ secrets.certificate-pem }}" ]]; then
+            {
+              echo "";
+              echo "CERTIFICATE_PEM='";
+              echo "${{ secrets.certificate-pem }}";
+              echo "'";
+            } >> "$ENV_FILE"
+          fi
+
+          if [[ -n "${{ secrets.private-key-pem }}" ]]; then
+            {
+              echo "";
+              echo "PRIVATE_KEY_PEM='";
+              echo "${{ secrets.private-key-pem }}";
+              echo "'";
+            } >> "$ENV_FILE"
+          fi
+
      - name: Boot accessories
        run: kamal accessory reboot all -d ${{ inputs.environment }}