Skip to content

Commit f4f4186

Browse files
TUPM96TUPM96
committed
Dung PAT rieng cho GitHub admin actions
1 parent 224f5d0 commit f4f4186

3 files changed

Lines changed: 7 additions & 5 deletions

File tree

.github/workflows/deploy.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -146,7 +146,7 @@ jobs:
146146
ADMIN_PASSWORD: ${{ secrets.ADMIN_PASSWORD }}
147147
DEV_PAYMENT_ENABLED: ${{ secrets.DEV_PAYMENT_ENABLED }}
148148
DEV_PAYMENT_CODE: ${{ secrets.DEV_PAYMENT_CODE }}
149-
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
149+
MERGEOS_GITHUB_TOKEN: ${{ secrets.MERGEOS_GITHUB_TOKEN }}
150150
GITHUB_OWNER: ${{ secrets.GITHUB_OWNER }}
151151
GITHUB_OWNER_TYPE: ${{ secrets.GITHUB_OWNER_TYPE }}
152152
MERGEOS_GITHUB_OAUTH_CLIENT_ID: ${{ secrets.MERGEOS_GITHUB_OAUTH_CLIENT_ID }}
@@ -156,7 +156,7 @@ jobs:
156156
username: ${{ secrets.DEPLOY_USER }}
157157
password: ${{ secrets.DEPLOY_PASSWORD }}
158158
port: ${{ secrets.DEPLOY_PORT }}
159-
envs: DEPLOY_PATH,ADMIN_EMAIL,ADMIN_PASSWORD,DEV_PAYMENT_ENABLED,DEV_PAYMENT_CODE,GITHUB_TOKEN,GITHUB_OWNER,GITHUB_OWNER_TYPE,MERGEOS_GITHUB_OAUTH_CLIENT_ID,MERGEOS_GITHUB_OAUTH_CLIENT_SECRET
159+
envs: DEPLOY_PATH,ADMIN_EMAIL,ADMIN_PASSWORD,DEV_PAYMENT_ENABLED,DEV_PAYMENT_CODE,MERGEOS_GITHUB_TOKEN,GITHUB_OWNER,GITHUB_OWNER_TYPE,MERGEOS_GITHUB_OAUTH_CLIENT_ID,MERGEOS_GITHUB_OAUTH_CLIENT_SECRET
160160
script: |
161161
set -e
162162
APP_DIR="${DEPLOY_PATH:-$HOME/mergeos}"
@@ -244,7 +244,7 @@ jobs:
244244
Environment=ADMIN_PASSWORD=$ADMIN_PASSWORD
245245
Environment=DEV_PAYMENT_ENABLED=$DEV_PAYMENT_ENABLED
246246
Environment=DEV_PAYMENT_CODE=$DEV_PAYMENT_CODE
247-
Environment=GITHUB_TOKEN=$GITHUB_TOKEN
247+
Environment=GITHUB_TOKEN=$MERGEOS_GITHUB_TOKEN
248248
Environment=GITHUB_OWNER=$GITHUB_OWNER
249249
Environment=GITHUB_OWNER_TYPE=$GITHUB_OWNER_TYPE
250250
Environment=GITHUB_OAUTH_CLIENT_ID=$MERGEOS_GITHUB_OAUTH_CLIENT_ID
@@ -262,7 +262,7 @@ jobs:
262262
systemctl --user is-active --quiet mergeos.service
263263
else
264264
pkill -f "$APP_DIR/mergeos" || true
265-
MERGEOS_ENV=production PORT=8080 DATABASE_URL="$DATABASE_URL_VALUE" ADMIN_EMAIL="$ADMIN_EMAIL" ADMIN_PASSWORD="$ADMIN_PASSWORD" DEV_PAYMENT_ENABLED="$DEV_PAYMENT_ENABLED" DEV_PAYMENT_CODE="$DEV_PAYMENT_CODE" GITHUB_TOKEN="$GITHUB_TOKEN" GITHUB_OWNER="$GITHUB_OWNER" GITHUB_OWNER_TYPE="$GITHUB_OWNER_TYPE" GITHUB_OAUTH_CLIENT_ID="$MERGEOS_GITHUB_OAUTH_CLIENT_ID" GITHUB_OAUTH_CLIENT_SECRET="$MERGEOS_GITHUB_OAUTH_CLIENT_SECRET" nohup "$APP_DIR/mergeos" > "$APP_DIR/mergeos.log" 2> "$APP_DIR/mergeos.err.log" &
265+
MERGEOS_ENV=production PORT=8080 DATABASE_URL="$DATABASE_URL_VALUE" ADMIN_EMAIL="$ADMIN_EMAIL" ADMIN_PASSWORD="$ADMIN_PASSWORD" DEV_PAYMENT_ENABLED="$DEV_PAYMENT_ENABLED" DEV_PAYMENT_CODE="$DEV_PAYMENT_CODE" GITHUB_TOKEN="$MERGEOS_GITHUB_TOKEN" GITHUB_OWNER="$GITHUB_OWNER" GITHUB_OWNER_TYPE="$GITHUB_OWNER_TYPE" GITHUB_OAUTH_CLIENT_ID="$MERGEOS_GITHUB_OAUTH_CLIENT_ID" GITHUB_OAUTH_CLIENT_SECRET="$MERGEOS_GITHUB_OAUTH_CLIENT_SECRET" nohup "$APP_DIR/mergeos" > "$APP_DIR/mergeos.log" 2> "$APP_DIR/mergeos.err.log" &
266266
fi
267267
if command -v sudo >/dev/null 2>&1; then
268268
NODE_MAJOR=22

README.md

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -252,7 +252,8 @@ Important backend variables:
252252
- `DEV_PAYMENT_ENABLED` and `DEV_PAYMENT_CODE`: local verifier
253253
- `PAYPAL_ENV`, `PAYPAL_CLIENT_ID`, `PAYPAL_CLIENT_SECRET`: PayPal Orders v2
254254
- `CRYPTO_RPC_URL`, `CRYPTO_RECEIVER`, `CRYPTO_ASSET`, `CRYPTO_TOKEN_CONTRACT`: crypto verifier
255-
- `GITHUB_TOKEN`, `GITHUB_OWNER`, `GITHUB_OWNER_TYPE`: GitHub bounty repo creation
255+
- `GITHUB_TOKEN`, `GITHUB_OWNER`, `GITHUB_OWNER_TYPE`: backend runtime values for GitHub bounty repo creation and admin PR merge actions
256+
- `MERGEOS_GITHUB_TOKEN`: Docker Compose and GitHub Actions secret name that maps into backend `GITHUB_TOKEN`; use a personal access token with repo write access, not the automatic GitHub Actions token
256257
- `GITHUB_OAUTH_CLIENT_ID`, `GITHUB_OAUTH_CLIENT_SECRET`: backend runtime values for GitHub login and MRG wallet linking
257258
- `MERGEOS_GITHUB_OAUTH_CLIENT_ID`, `MERGEOS_GITHUB_OAUTH_CLIENT_SECRET`: Docker Compose and GitHub Actions secret names that map into the backend runtime values
258259
- `BOUNTY_ROOT`: local child bounty repo root

docker-compose.yml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -40,6 +40,7 @@ services:
4040
CRYPTO_ASSET: erc20
4141
CRYPTO_TOKEN_DECIMALS: "6"
4242
CRYPTO_MIN_CONFIRMATIONS: "1"
43+
GITHUB_TOKEN: ${MERGEOS_GITHUB_TOKEN:-}
4344
GITHUB_OWNER: mergeos-bounties
4445
GITHUB_OWNER_TYPE: org
4546
GITHUB_OAUTH_CLIENT_ID: ${MERGEOS_GITHUB_OAUTH_CLIENT_ID:-}

0 commit comments

Comments
 (0)