From 9a3dfc4401080db8f9bb14bf3a2064799e59c6de Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nicolas=20B=C3=A9jean?= <nicolas@bejean.fr>
Date: Sat, 29 Jan 2022 13:38:29 +0100
Subject: [PATCH] feat: Secure GCP SA

---
 .gitlab-ci.yml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 5524a17..1f99732 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -194,6 +194,7 @@ destroy-psc:
     entrypoint: [""]
   variables:
     GCP_PROJECT_ID: $GCP_PROJECT_ID
+    GCP_SA: $GCP_SA
     GCP_REGION: $GCP_REGION
     GCP_NETWORK_NAME: $GCP_NETWORK_NAME
     GCP_SUBNETWORK_NAME: $GCP_SUBNETWORK_NAME
@@ -205,7 +206,7 @@ destroy-psc:
   before_script:
     - |
       printenv
-      echo $GCP_SA | base64 -di > gcp-sa.json
+      echo "$GCP_SA" | base64 -di > gcp-sa.json
       gcloud auth activate-service-account --key-file gcp-sa.json
       echo "Activate Service Account: OK"
       gcloud config set project $GCP_PROJECT_ID
@@ -262,7 +263,7 @@ destroy-gke:
   before_script:
     - |
       cd $TF_ROOT_GKE
-      echo $GCP_SA | base64 -di > gcp-sa.json
+      echo "$GCP_SA" | base64 -di > gcp-sa.json
   script:
     - |
       gitlab-terraform init
-- 
GitLab