vossad01
Reputation: 11948
How do I encrypt a build step?
I need a secret token to be part of a command executed by Travis CI, but am in a public repository. I found that I can encrypt parts of .travis.yml to keep secrets safe. However, encrypting the command like in the following example fails saying Y95MgqDf...Bc=}: No such file or directory
after_deploy:
- secure: "Y95MgqDf...Bc="
Upvotes: 1
Views: 32
Answers (1)
vossad01
Reputation: 11948
You don't encrypt the step. That does not appear to be supported by Travis.
Instead, encrypt only secret part:
$ travis encrypt TOKEN=verysecret
secure: "CnLZ...lI="
Put the secret in an environment variable:
env:
global:
secure: CnLZ...lI=
Then dereference the environment variable when you need your secret.
after_deploy:
- mycommand $TOKEN
Upvotes: 1
Related Questions
- How I can decrypt secure env variables in Travis CI?
- Travis encrypt vars not decoded properly gibberish=[secure]
- What do I need for Travis-CI to decrypt secure variables on my fork?
- How to encrypt auth key in github and integrate with Travis CI?
- Travis CI encrypted secret environment variables
- How to encrypt API keys for Travis CI configuration with bash cli (without ruby)?
- Encrypting a file on Travis for a GitHub repo that was renamed
- How to encrypt your Travis keys
- On travis-ci, how do I encrypt my slack info while also setting on_start, etc
- Encrypting keys for deploy section in Travis CI