Keeping PRO dependency in public Git repository


Topic: Keeping PRO dependency in public Git repository

kyberorg asked 4 years ago

I just started to use PRO version and found out that in package.json there AccessToken stored as plain text.

 "ng-uikit-pro-standard": "git+https://oauth2:here-goes-token@git.mdbootstrap.com/mdb/angular/ng-uikit-pro-standard.git"

So my question is: how to keep token away from public git repo?

SSH is not an option, because I use docker for building application.


Arkadiusz Idzikowski staff answered 4 years ago

I'm afraid there is no easy way to store a private variable in the GitHub repo in this case. We also don't know anything about your project configuration, so it's hard to come up with a specific solution.

MDB Angular can be installed from our GitLab server or from the .tgz file that we include in the zip version (you should have access to the zip version in your MDB profile). In this case, you would need to update the dependency in the package.json to:

"ng-uikit-pro-standard": "file:ng-uikit-pro-standard-10.0.0.tgz"

Then you can customize the pipeline to load the .tgz file from your private server and install the dependencies (this file is only needed to install the MDB Angular and can be removed later). Alternatively, you can still use the GitLab installation and replace the token on build time.


Please insert min. 20 characters.

FREE CONSULTATION

Hire our experts to build a dedicated project. We'll analyze your business requirements, for free.

Status

Answered

Specification of the issue
  • User: Free
  • Premium support: No
  • Technology: MDB Angular
  • MDB Version: 10.0.0
  • Device: All
  • Browser: All
  • OS: All
  • Provided sample code: No
  • Provided link: No
Tags
git