secretize jwt secret

2026-03-20 20:52:59 -05:00
parent a343c2e246
commit 7229e369ae
2 changed files with 2 additions and 1 deletions
--- a/.gitea/workflows/deploy-api.yaml
+++ b/.gitea/workflows/deploy-api.yaml
@@ -39,5 +39,6 @@ jobs:
      - name: Deploy container
        run: |
          export POSTGRES_PASSWORD=${{ secrets.POSTGRES_PASSWORD }}
+          export JWT_SECRET=${{ secrets.JWT_SECRET }}
          docker compose -f ./api/docker-compose.prod.yaml pull agologum-api
          docker compose -f ./api/docker-compose.prod.yaml up -d --force-recreate agologum-api
--- a/api/appsettings.json
+++ b/api/appsettings.json
@@ -11,7 +11,7 @@
  "AllowedHosts": "*",
  "https_port": 443,
  "Jwt": {
-    "Key": "local_secret_but_longer_this_time_so_it_actually_works",
+    "Key": "${JWT_SECRET}",
    "Issuer": "agologum-api",
    "Audience": "agologum-users"
  }