From 2544694586e074e79f7d562cbd3045eb9c2e22fb Mon Sep 17 00:00:00 2001 From: poprhythm Date: Wed, 18 Feb 2026 19:02:01 +0000 Subject: [PATCH] Move hardcoded secrets to .env files for dns-updateip, docker-registry, openclaw - dns-updateip: APIKEY now uses ${APIKEY} substitution - docker-registry: SECRET_KEY_BASE now uses ${SECRET_KEY_BASE} substitution - openclaw: OPENCLAW_GATEWAY_TOKEN now uses ${OPENCLAW_GATEWAY_TOKEN} substitution - Add .env.example templates for backrest, dns-updateip, docker-registry, openclaw --- backrest/.env.example | 2 ++ dns-updateip/.env.example | 1 + dns-updateip/docker-compose.yaml | 2 +- docker-registry/.env.example | 1 + docker-registry/docker-compose.yaml | 2 +- openclaw/.env.example | 9 ++------- openclaw/docker-compose.yml | 2 +- 7 files changed, 9 insertions(+), 10 deletions(-) create mode 100644 backrest/.env.example create mode 100644 dns-updateip/.env.example create mode 100644 docker-registry/.env.example diff --git a/backrest/.env.example b/backrest/.env.example new file mode 100644 index 0000000..3ee67fe --- /dev/null +++ b/backrest/.env.example @@ -0,0 +1,2 @@ +SMB_USERNAME=your_smb_username +SMB_PASSWORD=your_smb_password diff --git a/dns-updateip/.env.example b/dns-updateip/.env.example new file mode 100644 index 0000000..400be88 --- /dev/null +++ b/dns-updateip/.env.example @@ -0,0 +1 @@ +APIKEY=your_dnsexit_api_key diff --git a/dns-updateip/docker-compose.yaml b/dns-updateip/docker-compose.yaml index 01109cc..5fe887c 100644 --- a/dns-updateip/docker-compose.yaml +++ b/dns-updateip/docker-compose.yaml @@ -9,6 +9,6 @@ services: tty: true environment: - - APIKEY=s5P998CqUu5bqAukdS1dW57EfjgFlX + - APIKEY=${APIKEY} - HOST=kolpacksoftware.com,rmstsa.org,popcyclical.com - INTERVAL=1h diff --git a/docker-registry/.env.example b/docker-registry/.env.example new file mode 100644 index 0000000..fddf003 --- /dev/null +++ b/docker-registry/.env.example @@ -0,0 +1 @@ +SECRET_KEY_BASE=generate_with_openssl_rand_-hex_64 diff --git a/docker-registry/docker-compose.yaml b/docker-registry/docker-compose.yaml index cf68535..8b7689b 100644 --- a/docker-registry/docker-compose.yaml +++ b/docker-registry/docker-compose.yaml @@ -12,7 +12,7 @@ services: environment: - DOCKER_REGISTRY_URL=https://docker-registry.kolpacksoftware.com/ - PUBLIC_REGISTRY_URL=https://docker-registry.kolpacksoftware.com/ - - SECRET_KEY_BASE=0c11bc7a755901fcbb5ba0ef5e6ede0911452e9c944d4ab0d8eb3ee1cf8ff7dd4f8fee82615415f5dc665763c6b18b3b8aee6655f44388bc27b27624f218bf86 + - SECRET_KEY_BASE=${SECRET_KEY_BASE} - ENABLE_DELETE_IMAGES=true - VIRTUAL_HOST=docker-registry-ui.kolpacksoftware.com - VIRTUAL_PORT=8080 diff --git a/openclaw/.env.example b/openclaw/.env.example index 19f6822..b0765ac 100644 --- a/openclaw/.env.example +++ b/openclaw/.env.example @@ -1,7 +1,2 @@ -# Generate a random token for gateway authentication -# You can use: openssl rand -hex 32 -OPENCLAW_GATEWAY_TOKEN=your-gateway-token-here - -# Ollama Configuration -# OpenClaw will connect to Ollama running at http://ollama:11434 -# Make sure Ollama is running and has models pulled (e.g., llama3, mistral) +# OpenClaw Gateway Token (auto-generated or set manually) +OPENCLAW_GATEWAY_TOKEN=your_gateway_token diff --git a/openclaw/docker-compose.yml b/openclaw/docker-compose.yml index c387c3d..43ee786 100644 --- a/openclaw/docker-compose.yml +++ b/openclaw/docker-compose.yml @@ -11,7 +11,7 @@ services: - TZ=America/New_York - PUID=1000 - PGID=1000 - - OPENCLAW_GATEWAY_TOKEN=27d4e63adce6c8f7c5396e8ca3f9ec5e6ff590077247fb11da03a8684ee3c711 + - OPENCLAW_GATEWAY_TOKEN=${OPENCLAW_GATEWAY_TOKEN} - OPENCLAW_GATEWAY_BIND=lan - OPENCLAW_AGENT_PROVIDER=ollama - OPENCLAW_AGENT_MODEL=llama3