drone-secret-sync

Synchronize Drone secrets across multiple organizations or repository configurations.

Motivation

When using Drone as a CI/CD system, there are many organizations or repositories that require the same set of shared secrets, such as Docker credentials or Kubernetes secrets. Consequently, it becomes necessary to reconfigure these secrets every time a new repository or organization is created. This package is designed to address this issue.

How it works

This package uses the Drone API to synchronize secrets across multiple organizations or repository configurations. It can be used as a CLI tool or as a Docker image.

Using CLI

Create a .env file with the following content. You can also use the export command to set the environment variables.

DRONE_SERVER=https://cloud.drone.io
DRONE_TOKEN=xxxxx
ORG_LIST=appleboy
REPO_LIST=go-training/golang-in-ecr-ecs,go-training/drone-git-push-example
KEY_LIST=FOOBAR2
FOOBAR2=1234

DRONE_SERVER: Drone server URL.
DRONE_TOKEN: Drone token.
ORG_LIST: Comma-separated list of organizations.
REPO_LIST: Comma-separated list of repositories.
KEY_LIST: Comma-separated list of secret keys.

Download the latest release from GitHub and run the following command:

drone-secret-sync

The above command will sync the FOOBAR2 secret to the appleboy organization and go-training/golang-in-ecr-ecs and go-training/drone-git-push-example repositories. See the following output:

login user: appleboy
org: appleboy, update secret key: foobar2
repo: go-training/golang-in-ecr-ecs, update secret key: foobar2
repo: go-training/drone-git-push-example, update secret key: foobar2

Using Drone CI/CD

You can also use this package as a Docker image in your Drone CI/CD pipeline. See the following example:

---
kind: pipeline
name: linux-amd64

platform:
  os: linux
  arch: amd64

steps:

- name: publish
  pull: always
  image: ghcr.io/appleboy/drone-secret-sync:1
  settings:
    drone_token:
      from_secret: drone_token
    drone_server:
      from_secret: drone_server
    org_list: appleboy,go-training
    repo_list: go-training/golang-in-ecr-ecs,go-training/drone-git-push-example
    key_list: foobar,docker_test_username,docker_test_token
    foobar: test
  environment:
    DOCKER_TEST_USERNAME: appleboy
    DOCKER_TEST_TOKEN: 1234

Name		Name	Last commit message	Last commit date
Latest commit History 64 Commits
.github		.github
docker		docker
.gitignore		.gitignore
.goreleaser.yaml		.goreleaser.yaml
.hadolint.yaml		.hadolint.yaml
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
drone.go		drone.go
gitea.go		gitea.go
go.mod		go.mod
go.sum		go.sum
main.go		main.go
main_test.go		main_test.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

drone-secret-sync

Motivation

How it works

Using CLI

Using Drone CI/CD

About

Uh oh!

Releases 4

Sponsor this project

Uh oh!

Packages

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

drone-secret-sync

Motivation

How it works

Using CLI

Using Drone CI/CD

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 4

Sponsor this project

Uh oh!

Packages 0

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Packages