From 17c183e460f91fdcb05867d90ba9b75819028baa Mon Sep 17 00:00:00 2001
From: syoul <syoul@librezo.fr>
Date: Tue, 17 Mar 2026 13:42:33 +0100
Subject: [PATCH] debug: add secret injection diagnostic step

---
 .woodpecker.yml | 39 ++++++++++++++++++++++++++++-----------
 1 file changed, 28 insertions(+), 11 deletions(-)

diff --git a/.woodpecker.yml b/.woodpecker.yml
index 3326f9c..8e319a3 100644
--- a/.woodpecker.yml
+++ b/.woodpecker.yml
@@ -32,24 +32,40 @@ steps:
       - 'grep -q "^\.env$" .gitignore || (echo "ERREUR: .env manquant dans .gitignore" && exit 1)'
       - echo "Verifications de securite OK"
 
+  # Etape DEBUG : Verification injection secrets
+  - name: debug-secrets
+    image: alpine:3.20
+    environment:
+      PS_DOMAIN:
+        from_secret: PS_DOMAIN
+      DB_PASSWORD:
+        from_secret: DB_PASSWORD
+    commands:
+      - '[ -n "${PS_DOMAIN}" ] && echo "PS_DOMAIN : PRESENT (longueur=${#PS_DOMAIN})" || echo "PS_DOMAIN : VIDE"'
+      - '[ -n "${DB_PASSWORD}" ] && echo "DB_PASSWORD : PRESENT (longueur=${#DB_PASSWORD})" || echo "DB_PASSWORD : VIDE"'
+
   # Etape 3 : Deploiement sur sonic via Docker socket
   - name: deploy
     image: docker:27-cli
-    secrets:
-      - PS_DOMAIN
-      - PS_ADMIN_FOLDER
-      - PRESTASHOP_ADMIN_EMAIL
-      - PRESTASHOP_ADMIN_PASSWORD
-      - DB_ROOT_PASSWORD
-      - DB_PASSWORD
+    environment:
+      PS_DOMAIN:
+        from_secret: PS_DOMAIN
+      PS_ADMIN_FOLDER:
+        from_secret: PS_ADMIN_FOLDER
+      PRESTASHOP_ADMIN_EMAIL:
+        from_secret: PRESTASHOP_ADMIN_EMAIL
+      PRESTASHOP_ADMIN_PASSWORD:
+        from_secret: PRESTASHOP_ADMIN_PASSWORD
+      DB_ROOT_PASSWORD:
+        from_secret: DB_ROOT_PASSWORD
+      DB_PASSWORD:
+        from_secret: DB_PASSWORD
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock
       - /opt/prestashop:/opt/prestashop
     commands:
-      # Generer le .env sur le serveur a partir des secrets Woodpecker
       - printf 'PS_DOMAIN=%s\nPS_ADMIN_FOLDER=%s\nPRESTASHOP_ADMIN_EMAIL=%s\nPRESTASHOP_ADMIN_PASSWORD=%s\nDB_ROOT_PASSWORD=%s\nDB_PASSWORD=%s\n' "${PS_DOMAIN}" "${PS_ADMIN_FOLDER}" "${PRESTASHOP_ADMIN_EMAIL}" "${PRESTASHOP_ADMIN_PASSWORD}" "${DB_ROOT_PASSWORD}" "${DB_PASSWORD}" > /opt/prestashop/.env
       - chmod 600 /opt/prestashop/.env
-      # Deployer
       - cp docker-compose.yml /opt/prestashop/docker-compose.yml
       - cd /opt/prestashop && docker compose pull
       - cd /opt/prestashop && docker compose up -d --remove-orphans
@@ -58,8 +74,9 @@ steps:
   # Etape 4 : Healthcheck post-deploiement
   - name: healthcheck
     image: curlimages/curl:8.11.0
-    secrets:
-      - PS_DOMAIN
+    environment:
+      PS_DOMAIN:
+        from_secret: PS_DOMAIN
     commands:
       - |
         if [ -z "${PS_DOMAIN}" ]; then