-
Notifications
You must be signed in to change notification settings - Fork 15
Secrets
Roger Chen edited this page Jan 8, 2016
·
1 revision
The following configuration keys should be kept secret:
- flask_secret_key
- github_oauth_consumer_key
- github_oauth_consumer_secret
- github_admin_access_token
- github_webhook_secrets
The recommended way of storing secrets is to create a new config directory for them. Create a new secrets directory, and add a config.yaml file in it:
secrets/config.yaml
---
flask_secret_key: ""
github_oauth_consumer_key: ""
github_oauth_consumer_secret: ""
github_admin_access_token: ""
github_webhook_secrets:
- ""You can fill in your own secret tokens in this file. Then, specify it as a config directory for ob2 using either the OB2_CONFIG_PATHS environment variable or the --config command-line flag. Make sure to specify this directory LAST, or else these values may be overridden by config directories that follow it.