groall
commented
7 years ago It's good idea
Closed drklauss closed 6 years ago
groall
commented
7 years ago It's good idea
VojtechVitek
commented
6 years ago I don't really see what targets: would give us in terms of security.
You could possibly make those commands hard to type, ie. insert a whitespace into the command key:
" go_build":
run: echo "This can be invoked from target, but it's hard to type in CLI"Note that sup ENV go_build would not invoke this command, since it's missing the leading whitespace.
If you care about security, then don't give these developers access to production hosts. Give them access to dev/stg environment only :)
Instead of networks:, you can verify against $SUP_NETWORK variable, ie.:
go_build:
desc: Сборка, only in build network
run: |
[ $SUP_NETWORK != "build" ] && exit 0 || go build -o ./bin/api main.go
Good day, everyone. In our company we refused from Makefile to the favor of Supfile. We use sup for deploy, many members of my team can pull project from git repository and execute commands written in Supfile. Some of team members inattentive and careless, so they can accidentally run all commands. I think, that sup doesn't have enough security. I offer to inject several command limits or roles, for example add networks and targets section in each command section :
In example above
link_configcan be run only so:sup prod build. It cannot be run itself. The same as forgo_build- you can run it only in specific context (see targets and networks section). I think, that it is good descision for security deployment, which can provide safe deployment not only for main developer, but for everyone, who uses his project.