digitalboard.core

History

Simon Bärlocher fb81f60f9d fix(opnform): drop production-looking secrets from defaults opnform_app_key, opnform_jwt_secret, opnform_front_api_secret and opnform_db_password shipped as real base64 strings in defaults — they look like production secrets that just happen to be public. Set all four to '' and rely on the existing Validate task (and the new argument_specs marking them required) to fail fast when an inventory forgets to override them. Mirror the docstring comment to show how to generate each one with openssl.	2026-05-26 14:58:18 +02:00
..
main.yml	fix(opnform): drop production-looking secrets from defaults	2026-05-26 14:58:18 +02:00

Simon Bärlocher fb81f60f9d

fix(opnform): drop production-looking secrets from defaults

opnform_app_key, opnform_jwt_secret, opnform_front_api_secret and
opnform_db_password shipped as real base64 strings in defaults — they
look like production secrets that just happen to be public. Set all
four to '' and rely on the existing Validate task (and the new
argument_specs marking them required) to fail fast when an inventory
forgets to override them.

Mirror the docstring comment to show how to generate each one with
openssl.

2026-05-26 14:58:18 +02:00

main.yml

fix(opnform): drop production-looking secrets from defaults

2026-05-26 14:58:18 +02:00