Merge pull request '[deploy-opentofu]' (#225) from fenix-admin into main

Reviewed-on: fenix-gitea-admin/iac-opentofu-private#225
2025-10-27 07:43:07 +00:00 · 2025-09-07 21:54:47 +00:00
parent 57dfd0bf08 f96803b9be
commit e43d88d980
1 changed files with 23 additions and 21 deletions
--- a/.gitea/workflows/ci-test.yaml
+++ b/.gitea/workflows/ci-test.yaml
@ -123,29 +123,31 @@ jobs:
      - name: vaultwarden login
        working-directory: infra/iac
        run: |
-          BW_SESSION=$(bw login)
+          #BW_SESSION=$(bw login)
+          bw login
+          BW_SESSION=$(bw unlock --raw)


-      #- name: vaultwarden getsecrets
-      #  working-directory: infra/iac
-      #  run: |
-      #    BW_SESSION2=$(bw unlock --raw --session "$BW_SESSION")
-      #    # Ler o arquivo de referência
-      #    for secret in $(jq -c '.secrets[]' secrets/vault-secrets-map.json); do
-      #      name=$(echo "$secret" | jq -r '.name')
-      #      type=$(echo "$secret" | jq -r '.type')
-      #      output=$(echo "$secret" | jq -r '.output')
-      #      echo "$name $type $output"
-      #      item_id=$(bw get item "$name" --session "$BW_SESSION2"  | jq -r '.id')
-      #      echo "$item_id"
-      #      if [ "$type" == "attachment" ]; then
-      #        echo "attachment get"
-      #        bw get attachment "$output" --itemid "$item_id" --output "$output"
-      #      elif [ "$type" == "note" ]; then
-      #        echo "note get"
-      #        bw get item "$name" | jq -r '.notes' > "$output"
-      #      fi
-      #    done
+      - name: vaultwarden getsecrets
+        working-directory: infra/iac
+        run: |
+          #BW_SESSION2=$(bw unlock --raw --session "$BW_SESSION")
+          # Ler o arquivo de referência
+          for secret in $(jq -c '.secrets[]' secrets/vault-secrets-map.json); do
+            name=$(echo "$secret" | jq -r '.name')
+            type=$(echo "$secret" | jq -r '.type')
+            output=$(echo "$secret" | jq -r '.output')
+            echo "$name $type $output"
+            item_id=$(bw get item "$name"  | jq -r '.id')
+            echo "$item_id"
+            if [ "$type" == "attachment" ]; then
+              echo "attachment get"
+              bw get attachment "$output" --itemid "$item_id" --output "$output"
+            elif [ "$type" == "note" ]; then
+              echo "note get"
+              bw get item "$name" | jq -r '.notes' > "$output"
+            fi
+          done

      - name: Set up Python
        uses: actions/setup-python@v4