From 55c05743bba7c09faece5bccbc65c3abb45f6cb4 Mon Sep 17 00:00:00 2001
From: Stefano Verna <s.verna@datocms.com>
Date: Fri, 13 Dec 2024 10:41:04 +0100
Subject: [PATCH] wip

---
 .github/workflows/deploy.yml | 7 ++++++-
 .kamal/secrets.staging       | 1 -
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
index 17c341b8..e1c90a5d 100644
--- a/.github/workflows/deploy.yml
+++ b/.github/workflows/deploy.yml
@@ -49,5 +49,10 @@ jobs:
           GITHUB_CONTAINER_REGISTRY_API_TOKEN: ${{ secrets.GCR_API_TOKEN }}
           PRIVATE_KEY: ${{ secrets.KAVO_PRIVATE_KEY }}
         run: |
-          sed -i -E -e 's/\-\-break 0/--wrap=0/g' -e '/^SECRETS=/d' -e 's/^GITHUB_CONTAINER_REGISTRY_API_TOKEN=.*$/GITHUB_CONTAINER_REGISTRY_API_TOKEN=$GITHUB_CONTAINER_REGISTRY_API_TOKEN/' .kamal/secrets.$KAMAL_DESTINATION
+          echo $(npx kavo files:decrypt .env.staging -o | base64 --wrap=0)
+          echo "Tweaking .kamal/secrets.$KAMAL_DESTINATION"
+          sed -i -E -e 's/\-\-break 0/--wrap=0/g' -e '/^SECRETS=/d' -e 's/^GITHUB_CONTAINER_REGISTRY_API_TOKEN=.*$/GITHUB_CONTAINER_REGISTRY_API_TOKEN=foobar/' .kamal/secrets.$KAMAL_DESTINATION
+          cat .kamal/secrets.$KAMAL_DESTINATION
+          echo -n $GITHUB_CONTAINER_REGISTRY_API_TOKEN | md5sum
+          ruby -e 'require "dotenv"; puts ::Dotenv.parse(".kamal/secrets.staging").inspect'
           kamal deploy -d $KAMAL_DESTINATION
diff --git a/.kamal/secrets.staging b/.kamal/secrets.staging
index b62cd697..0aeec66e 100644
--- a/.kamal/secrets.staging
+++ b/.kamal/secrets.staging
@@ -10,6 +10,5 @@ RECAPTCHA_SECRET_KEY=$(echo $KAVO_SECRETS | base64 --decode | sed -n 's/^RECAPTC
 ROLLBAR_TOKEN=$(echo $KAVO_SECRETS | base64 --decode | sed -n 's/^ROLLBAR_TOKEN=//p')
 SECRET_API_TOKEN=$(echo $KAVO_SECRETS | base64 --decode | sed -n 's/^SECRET_API_TOKEN=//p')
 SLACK_TOKEN=$(echo $KAVO_SECRETS | base64 --decode | sed -n 's/^SLACK_TOKEN=//p')
-
 SECRETS=$(kamal secrets fetch --adapter bitwarden --account s.verna@datocms.com GITHUB_CONTAINER_REGISTRY_API_TOKEN)
 GITHUB_CONTAINER_REGISTRY_API_TOKEN=$(kamal secrets extract GITHUB_CONTAINER_REGISTRY_API_TOKEN $SECRETS)