-
|
Suppose I want to call an external service / API from the GitHub app. What is a secure way to configure those credentials if I do not want to store them insecurely in the repository? Basically I am looking for encrypted secrets that are available for GitHub Actions but for a GitHub app. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
I'm not sure I understand your use case:
1/ is easy: you can use Quarkus' config framework to inject environment variables into config: https://quarkus.io/guides/config-reference . 2/ I don't think you have many options there. GitHub secrets are not available to GitHub Apps and there's no way to get the values from the API. The only option I see is to encrypt the secrets with GPG and host them in the repo. Note that if GitHub Actions are more practical for you, we also have https://github.com/quarkiverse/quarkus-github-action . |
Beta Was this translation helpful? Give feedback.
-
|
Thanks for the pointers, yeah, I think a GitHub action is more suitable for my use case. |
Beta Was this translation helpful? Give feedback.
I'm not sure I understand your use case:
1/ is easy: you can use Quarkus' config framework to inject environment variables into config: https://quarkus.io/guides/config-reference .
2/ I don't think you have many options there. GitHub secrets are not available to GitHub Apps and there's no way to get the values from the API. The only option I see is to encrypt the secrets with GPG and host them in the repo.
Note that if GitHub Actions are more practical for you, we also have https://github.com/quarkiverse/qua…