We’ve just rolled out some changes to the config definition used for creating Machines to make it easier to have files created and populated from two data sources in the config. All data must be provided to the system as a base64 encoded string.
Below are two examples of how you can take advantage of this new feature when working with the Machines API directly:
Raw Data
{
...
"files": [
{
"guest_path": "/etc/foo/bar.json",
"raw_value": "ewogICJjb25maWciOiB7CiAgICAic29tZXRoaW5nIjogImNvbmZpZ3VyYWJsZSIKICB9Cn0K"
}
]
}
With the above example, a file will be created at /etc/foo/bar.json populated with the following content:
{
"config": {
"something": "configurable"
}
}
Secret Data
{
...
"files": [
{
"guest_path": "/etc/db/config.json",
"secret_name": "DB_CONFIG"
}
]
}
If you have added a secret DB_CONFIG to the app, with the above example, a file will be created at /etc/db/config.json populated the content from the secret. If you had previously been relying on the DB_CONFIG environment variable to access the secret, it would no longer be set in this scenario and the only way to access the secret is in the /etc/db/config.json file.
REMINDER: the value must be base64 encoded before creating it:
fly secrets set --app my-awesome-fly-app DB_CONFIG="<BASE_64_ENCODED>"
We’ve also made it possible to define files for the machine using CLI flags and infly.toml for use with fly deploy.
The following flags have been added to fly machine run, fly machine update and fly deploy:
--file-local=/path/inside/machine=<local/path>
--file-literal=/path/inside/machine=VALUE
--file-secret=/path/inside/machine=SECRET
And below is an example for defining files via fly.toml:
[[files]]
guest_path = "/path/to/hello.txt"
raw_value = "aGVsbG8gd29ybGQK"
[[files]]
guest_path = "/path/to/secret.txt"
secret_name = "SUPER_SECRET"
[[files]]
guest_path = "/path/to/config.yaml"
local_path = "/local/path/config.yaml"
processes = ["web"]
