diff options
author | Tavian Barnes <tavianator@tavianator.com> | 2021-05-17 19:07:17 -0400 |
---|---|---|
committer | Tavian Barnes <tavianator@tavianator.com> | 2021-05-17 19:11:19 -0400 |
commit | cf5547e6d2151e8e50ae56db2de27e72d46df167 (patch) | |
tree | def3818e5ae33daffc8b9ce25c2b4e75cf2db1cf | |
parent | 6c150ac31512ce320b71999d034aa5c359cfc769 (diff) | |
download | bfs-cf5547e6d2151e8e50ae56db2de27e72d46df167.tar.xz |
ci/freebsd: Use an ephemeral Tailscale key
There should be no need for the shared machine key any more.
-rw-r--r-- | .github/workflows/freebsd.yml | 18 |
1 files changed, 11 insertions, 7 deletions
diff --git a/.github/workflows/freebsd.yml b/.github/workflows/freebsd.yml index 55e3478..2d459fb 100644 --- a/.github/workflows/freebsd.yml +++ b/.github/workflows/freebsd.yml @@ -12,18 +12,22 @@ jobs: - uses: actions/checkout@v2 - name: Install dependencies - env: - SSH_KEY: ${{ secrets.SSH_KEY }} - TAILSCALE_KEY: ${{ secrets.TAILSCALE_KEY }} - TAILSCALE_MACHINE_KEY: ${{ secrets.TAILSCALE_MACHINE_KEY }} run: | - sudo mkdir /var/lib/tailscale - printf '%s' "$TAILSCALE_MACHINE_KEY" | sudo tee /var/lib/tailscale/tailscaled.state >/dev/null curl -fsSL https://pkgs.tailscale.com/stable/ubuntu/focal.gpg | sudo apt-key add - curl -fsSL https://pkgs.tailscale.com/stable/ubuntu/focal.list | sudo tee /etc/apt/sources.list.d/tailscale.list sudo apt-get update -y sudo apt-get install -y tailscale - sudo tailscale up --hostname=gh-runner --authkey="$TAILSCALE_KEY" + + - name: Configure Tailscale + env: + TAILSCALE_KEY: ${{ secrets.TAILSCALE_KEY }} + run: | + sudo tailscale up --authkey="$TAILSCALE_KEY" + + - name: Configure SSH + env: + SSH_KEY: ${{ secrets.SSH_KEY }} + run: | mkdir ~/.ssh printf '%s' "$SSH_KEY" >~/.ssh/github-actions chmod 0600 ~/.ssh/github-actions |