From 11a1fce2620ef6a020cb113ae138ea5a9b2e6a0a Mon Sep 17 00:00:00 2001
From: PAlexanderFranklin <PAlexanderFranklin@gmail.com>
Date: Thu, 21 Mar 2024 11:59:07 -0700
Subject: [PATCH] Use secrets instead of copy

---
 Shilohimage  | 5 +++--
 compose.yaml | 6 ++++++
 2 files changed, 9 insertions(+), 2 deletions(-)

diff --git a/Shilohimage b/Shilohimage
index 5a6da692..07d57832 100644
--- a/Shilohimage
+++ b/Shilohimage
@@ -99,8 +99,9 @@ RUN apt-get update \
 
 USER frappe
 
-COPY ./.ssh /home/frappe/.ssh
-RUN echo "StrictHostKeyChecking no" > ~/.ssh/config
+RUN mkdir -p /home/frappe/.ssh && ln -s /run/secrets/user_ssh_key /home/frappe/.ssh/id_ed25519
+RUN chown -R frappe:frappe /home/frappe/.ssh
+RUN echo "Host *.trabe.io\n\tStrictHostKeyChecking no\n" >> /home/frappe/.ssh/config
 
 ARG FRAPPE_BRANCH=version-15
 ARG FRAPPE_PATH=https://github.com/frappe/frappe
diff --git a/compose.yaml b/compose.yaml
index f4d355a3..ea078f00 100644
--- a/compose.yaml
+++ b/compose.yaml
@@ -40,6 +40,8 @@ services:
       REDIS_QUEUE: ${REDIS_QUEUE}
       SOCKETIO_PORT: 9000
     depends_on: {}
+    secrets:
+      - user_ssh_key
 
   backend:
     <<: *backend_defaults
@@ -86,3 +88,7 @@ services:
 # ERPNext requires local assets access (Frappe does not)
 volumes:
   sites:
+
+secrets:
+  user_ssh_key:
+    file: ~/.ssh/brothertonerpprod_ed25519