Infra Week: Create Utility Script for Exporting ENV Variables and Update Pulumi Scripts

[erichfi]

User Story: As a developer, I want to create a utility script that pulls and exports all relevant ENV variables for any environment to local ENVs and update Pulumi scripts to read these variables, so that I can run pulumi up from my local environment for review, staging, and production using the correct variables.

!! Note from Lucian !! : I'll update the pulumi scripts as part of https://github.com/gitcoinco/passport/issues/2627, so this ticket can just handle the script for local development. Or really, setting up a .env.local with the right 1password paths and then altering the package.json commands to use the 1password utility, and making sure 1password has good default entries for local dev. See https://developer.1password.com/docs/cli/secrets-environment-variables/

Acceptance Criteria: GIVEN the utility script and updated Pulumi scripts, WHEN I run the script, THEN all relevant environment variables should be pulled and exported to my local environment, and the Pulumi scripts should use these variables.

Tech Details:

• see https://developer.1password.com/docs/cli/secrets-environment-variables/ for more details
• Develop a script to pull and export environment variables.
• Ensure the script works for review, staging, and production environments.
• Modify the Pulumi script to use external environment variables, including NEXT_PUBLIC_MAX_LEGACY_ROUND_ID.
• Document usage instructions.

Open Questions:

• [ ] Should the script handle any environment-specific logic?

• [ ] Are there additional environment variables that need to be considered?

Notes/Assumptions:

• Assume developers have local environments set up correctly.
• Assume all required environment variables are available.

[lucianHymer]

We probably want to use the methods described here? https://developer.1password.com/docs/cli/secrets-environment-variables

[nutrina]

The repos affected

• passport-data-science
• passport
• passport-scorer
• identity-staking (contracts)
• identity-staking-app
• eas-proxy
• passport-scroll-badge
• passport-scroll-badge-services

Exceptions to be handled

• docker image URLs: we should have a command that uses aws cli to get the latest image tag for a repo, but we should be able to override if required (for example if we want to roll back

[lucianHymer]

Note: I'll update the pulumi scripts as part of #2627, so this ticket can just handle the script for local development

[tim-schultz]

There are POCs for loading the env variables while running pulumi up locally in the linked PRs. Moving to blocked until 2627 is finished up since there is a decent amount of overlap

[tim-schultz]

This is no longer needed