Store Let's Encrypt private key in settings

Storing this key in secrets.yml was a bad idea, it would require users using HA setups to manually replicate secrets across nodes during update, it also needed support from omnibus package * Revert "Generate Let's Encrypt private key" This reverts commit 444959bfa0b79e827a2a1a7a314acac19390f976. * Add Let's Encrypt private key to settings as encrypted attribute * Generate Let's Encrypt private key in database migration
author: Vladimir Shushlin <vshushlin@gitlab.com> 2019-05-28 04:47:34 +0000
committer: Stan Hu <stanhu@gmail.com> 2019-05-28 04:47:34 +0000
commit: 4687ff7c9be789341e82a6440234fce43f30b5be (patch)
tree: 59b72fafa974c92af04590e7fc3b64c6536aef70 /lib/gitlab/lets_encrypt
parent: af43970834b911242eecf9b7c815faf0f6b50048 (diff)
download: gitlab-ce-4687ff7c9be789341e82a6440234fce43f30b5be.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/gitlab/lets_encrypt/client.rb b/lib/gitlab/lets_encrypt/client.rb
index d7468b06767..5501f7981ec 100644
--- a/lib/gitlab/lets_encrypt/client.rb
+++ b/lib/gitlab/lets_encrypt/client.rb
@@ -45,7 +45,7 @@ module Gitlab
       end
 
       def private_key
-        @private_key ||= OpenSSL::PKey.read(Gitlab::Application.secrets.lets_encrypt_private_key)
+        @private_key ||= OpenSSL::PKey.read(Gitlab::CurrentSettings.lets_encrypt_private_key)
       end
 
       def admin_email
author	Vladimir Shushlin <vshushlin@gitlab.com>	2019-05-28 04:47:34 +0000
committer	Stan Hu <stanhu@gmail.com>	2019-05-28 04:47:34 +0000
commit	4687ff7c9be789341e82a6440234fce43f30b5be (patch)
tree	59b72fafa974c92af04590e7fc3b64c6536aef70 /lib/gitlab/lets_encrypt
parent	af43970834b911242eecf9b7c815faf0f6b50048 (diff)
download	gitlab-ce-4687ff7c9be789341e82a6440234fce43f30b5be.tar.gz