Merge pull request #1186 from pikasTech/fix/d518-sentinel-env-scope
fix: 限定 Web 哨兵 runtime env 注入范围
This commit is contained in:
@@ -590,8 +590,9 @@ function sentinelContainerEnv(sentinelId: string, secrets: Record<string, unknow
|
||||
const targetKey = stringAtNullable(item, "targetKey");
|
||||
const sourcePurpose = stringAtNullable(item, "sourcePurpose");
|
||||
const sourceKey = sourcePurpose === null ? null : stringAtNullable(sourcesByPurpose.get(sourcePurpose), "sourceKey");
|
||||
if (targetKey !== null && sourceKey !== null && /^[A-Za-z_][A-Za-z0-9_]*$/u.test(sourceKey)) {
|
||||
pushEnv({ name: sourceKey, valueFrom: { secretKeyRef: { name: secretName, key: targetKey } } });
|
||||
const sourceKeyEnvName = sourcePurpose === "bootstrap-admin" || sourcePurpose === "prompt-set" ? sourceKey : null;
|
||||
if (targetKey !== null && sourceKeyEnvName !== null && /^[A-Za-z_][A-Za-z0-9_]*$/u.test(sourceKeyEnvName)) {
|
||||
pushEnv({ name: sourceKeyEnvName, valueFrom: { secretKeyRef: { name: secretName, key: targetKey } } });
|
||||
}
|
||||
const envName = sourcePurpose === null || targetKey === null ? null : accountSecretEnvName(sourcePurpose, targetKey);
|
||||
if (envName === null) continue;
|
||||
|
||||
Reference in New Issue
Block a user