Merge pull request #3019 from raft-tech/2677-managed-sendgrid-in-circ…

…leci 2677 - Add sendgrid api key to deploy-backend
raft-tech · Jun 4, 2024 · 7e0cb82 · 7e0cb82
2 parents 52aa35f + 1693205
commit 7e0cb82
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 1 deletion.
diff --git a/...ation/Architecture-Decision-Record/004-configuration-by-environment-variable.md b/...ation/Architecture-Decision-Record/004-configuration-by-environment-variable.md
@@ -9,9 +9,11 @@ Accepted
 
 Applications need to be configured differently depending on where they are running. For example, the backend running locally will have different configuration then the backend running in production.
 
+Further, environment variables can be designated "secret" or not; the term "secret key" is often used in place of secret environment variables. Secret keys are sometimes (but not always) shared between different deployment environments, which makes it useful to have a central "single source of truth" where a secret key can be kept and copied out to different environments. CircleCI solves this use case for us, allowing secret keys to be managed by the project's Environment Variables, and accessed in the deployment process to write to cloud.gov applications.
+
 ## Decision
 
-We will use environment variables to configure applications.
+We will use environment variables to configure applications. We will use Environment Variables in CircleCI to store and manage secret keys.
 
 ## Consequences
 

diff --git a/scripts/deploy-backend.sh b/scripts/deploy-backend.sh
@@ -62,6 +62,7 @@ set_cf_envs()
   "REDIS_URI"
   "JWT_KEY"
   "STAGING_JWT_KEY"
+  "SENDGRID_API_KEY"
   )
 
   echo "Setting environment variables for $CGAPPNAME_BACKEND"