travis: Avoid notification noise from forks
Encrypt name of IRC channel to workaround forks spamming us with their testing messages. Docs: https://docs.travis-ci.com/user/environment-variables/#Defining-encrypted-variables-in-.travis.yml
This commit is contained in:
James Shubin
@@ -21,10 +21,13 @@ matrix:
|
|||||||
- go: 1.10.x
|
- go: 1.10.x
|
||||||
- go: tip
|
- go: tip
|
||||||
- os: osx
|
- os: osx
|
||||||
|
|
||||||
|
# the "secure" channel value is the result of running: ./misc/travis-encrypt.sh
|
||||||
|
# with a value of: irc.freenode.net#mgmtconfig to eliminate noise from forks...
|
||||||
notifications:
|
notifications:
|
||||||
irc:
|
irc:
|
||||||
channels:
|
channels:
|
||||||
- "irc.freenode.net#mgmtconfig"
|
- secure: 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
|
||||||
template:
|
template:
|
||||||
- "%{repository} (%{commit}: %{author}): %{message}"
|
- "%{repository} (%{commit}: %{author}): %{message}"
|
||||||
- "More info : %{build_url}"
|
- "More info : %{build_url}"
|
||||||
@@ -34,6 +37,6 @@ notifications:
|
|||||||
skip_join: false
|
skip_join: false
|
||||||
email:
|
email:
|
||||||
recipients:
|
recipients:
|
||||||
- travis-ci@shubin.ca
|
- secure: qNkgP6QLl6VXpFQIxas2wggxvIiOmm1/hGRXm4BXsSFzHsJPvMamA3E1HEC7H+luiWTny1jtGSGgTJPV9CX1LtQV0g0S4ThaAvWuKvk3rXO8IVd++iA/Lh1s1H6JdKM0dJtLqFICawjeci4tOQzSvrM2eCBWqT0UYsrQsGHB6AF31GNAH0Acqd5cYeL+ZpbCN+hQEznAZQ7546N25TwqieI8Lg7nisA+lwYYwsaC2+f5RIeyvvKjQv3wzEdBAQ9CI9WQiTOUBnUnyYxMrdomQ/XGF66QnZy9vq5nEP83IFtuhPvSamL7ceT+yJW0jDyBi8sYEV7On7eXzjyHbiYpF4YHcJrFnf5RyV4kQGd6/SC8iZwK4Is4eyeAjDFTC+JafLajw9R9x9bK43BwlRAWOZxjFKe0cU/BVAjmlz87vHgUho2P41+0a5XfajfU6VhA5QFPK6rNH7W1CnA7D/0LmS0yaqJM1OCrm6LfoZEMhe0DxTJ9uWJbr0x1sYao6q8H4xYk+fyRgoBAr2TxYU7kXx8ThiRdzuQ8izdbojlzTYLe8liZMIsjL0axLsLK7YBWrjJUcDFDjR/DqmVxPrvbVFbCi9ChmBw0WmbJvDY0FV8T8dO8wCjg9JEmprAmWPyq0g/F87LFK4tAZqQFJGjP1qwsR9jdwdNTKeCdY656f/Y=
|
||||||
on_failure: change
|
on_failure: change
|
||||||
on_success: change
|
on_success: change
|
||||||
|
|||||||
55
misc/travis-encrypt.sh
Executable file
55
misc/travis-encrypt.sh
Executable file
@@ -0,0 +1,55 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
# modified slightly, originally from:
|
||||||
|
# https://raw.githubusercontent.com/dlenski/travis-encrypt-sh/master/travis-encrypt
|
||||||
|
|
||||||
|
if [[ $# < 2 ]]; then
|
||||||
|
p="$(basename $0)"
|
||||||
|
here=$(mktemp)
|
||||||
|
git remote -v 2>/dev/null | grep -oP '(?<=github.com[:/])([^/]+/[^/]+?)(?=\.git| )' > "$here"
|
||||||
|
IFS=/ read user repo < "$here"
|
||||||
|
else
|
||||||
|
user="$1"
|
||||||
|
repo="$2"
|
||||||
|
shift 2
|
||||||
|
fi
|
||||||
|
|
||||||
|
if [[ -z "$user" || -z "$repo" ]]; then
|
||||||
|
echo "usage: $p [user] [repository] [value to encrypt]"
|
||||||
|
echo
|
||||||
|
echo "e.g.: $p 'P@ssw0rd' (only inside a repo with a github remote)"
|
||||||
|
echo "or $p ${user:-jsmith} ${repo:-MyRepo} 'VAR=\"s3cret\"'"
|
||||||
|
echo "or $p ${user:-jsmith} ${repo:-MyRepo} 'P@ssw0rd'"
|
||||||
|
exit 1
|
||||||
|
fi >&2
|
||||||
|
|
||||||
|
value="$1"
|
||||||
|
|
||||||
|
# Fetch key
|
||||||
|
keyurl="https://api.travis-ci.org/repos/$user/$repo/key"
|
||||||
|
echo "Fetching key from $keyurl ..." >&2
|
||||||
|
keyfile=$(mktemp)
|
||||||
|
curl -s "$keyurl" > "$keyfile" || {
|
||||||
|
echo "Couldn't fetch key from $keyurl!" >&2
|
||||||
|
exit 1
|
||||||
|
}
|
||||||
|
|
||||||
|
# (Exceptionally poor)-man's JSON-to-PEM
|
||||||
|
# Some Travis-CI pubkeys have " RSA PUBLIC KEY", where others have the standard " PUBLIC KEY".
|
||||||
|
sed -i 's|\\n|\n|g; s|"|\n|g; s/ RSA PUBLIC KEY/ PUBLIC KEY/g' "$keyfile"
|
||||||
|
grep -q "BEGIN PUBLIC KEY" "$keyfile" || {
|
||||||
|
echo "Key file from $keyurl seems malformed: $keyfile" >&2
|
||||||
|
exit 1
|
||||||
|
}
|
||||||
|
|
||||||
|
if [[ -z "$value" ]]; then
|
||||||
|
read -p "Value to encrypt? " value
|
||||||
|
fi
|
||||||
|
|
||||||
|
echo "Encrypting with openssl rsautl ..." >&2
|
||||||
|
|
||||||
|
set -o pipefail
|
||||||
|
echo -n "$value" | openssl rsautl -encrypt -inkey "$keyfile" -pubin -pkcs | base64 -w0 || {
|
||||||
|
echo "Error in openssl rsautl." >&2
|
||||||
|
exit 1
|
||||||
|
}
|
||||||
|
echo $'\nSuccess.' >&2
|
||||||
Reference in New Issue
Block a user