[PR #167] [MERGED] fix(blueprint): generate required 32-byte hex secret_key with hash:64 #258

New Issue

Closed

opened 2025-11-22 20:33:36 -06:00 by GiteaMirror · 0 comments

GiteaMirror commented 2025-11-22 20:33:36 -06:00

Owner

Copy Link

📋 Pull Request Information

Original PR: https://github.com/Dokploy/templates/pull/167
Author: @deankerr
Created: 6/5/2025
Status: ✅ Merged
Merged: 6/20/2025
Merged by: @Siumauricio

Base: main ← Head: fix-outline-secret-key

---

📝 Commits (1)

• 11740ae fix(blueprint): generate 32-byte hex secret_key with hash helper

📊 Changes

1 file changed (+1 additions, -1 deletions)

View changed files

📝 blueprints/outline/template.toml (+1 -1)

📄 Description

Outline expects a hex-encoded 32-byte random SECRET_KEY value, but currently a base64:32 value is generated, making authentication impossible.

outline/.env.sample

# Generate a hex-encoded 32-byte random key. Use `openssl rand -hex 32` in your
# terminal to generate a random value.
SECRET_KEY=generate_a_new_key

{"error":"Invalid key length","level":"error","message":"Failed to encrypt database column (accessToken). The SECRET_KEY environment variable is not the correct length.","stack":"RangeError: Invalid key length\n    at Cipheriv.createCipherBase (node:internal/crypto/cipher:121:19)\n    at Cipheriv.createCipherWithIV (node:internal/crypto/cipher:140:3)\n    at new Cipheriv (node:internal/crypto/cipher:243:3)\n    at Object.createCipheriv (node:crypto:147:10)\n    at Object.createCipheriv (/opt/outline/node_modules/dd-trace/packages/datadog-instrumentations/src/crypto.js:29:27)\n    at UserAuthentication.set (/opt/outline/node_modules/sequelize-encrypted/index.js:48:33)\n    at UserAuthentication.set (/opt/outline/build/server/models/decorators/Encrypted.js:55:59)\n    at UserAuthentication.set (/opt/outline/node_modules/sequelize/lib/model.js:2256:32)\n    at UserAuthentication.set (/opt/outline/node_modules/sequelize/lib/model.js:2241:18)\n    at UserAuthentication._initValues (/opt/outline/node_modules/sequelize/lib/model.js:156:10)\n    at new Model (/opt/outline/node_modules/sequelize/lib/model.js:116:10)\n    at new Model (/opt/outline/node_modules/sequelize-typescript/dist/model/model/model.js:14:9)\n    at new Model (/opt/outline/build/server/models/base/Model.js:24:5)\n    at new IdModel (/opt/outline/build/server/models/base/IdModel.js:20:5)\n    at new UserAuthentication (/opt/outline/build/server/models/UserAuthentication.js:29:5)\n    at new user_authentication (/opt/outline/build/server/models/decorators/Fix.js:21:7)\n    at user_authentication.build (/opt/outline/node_modules/sequelize/lib/model.js:1344:12)\n    at Model.<computed> (/opt/outline/node_modules/sequelize-typescript/dist/model/model/model.js:128:28)\n    at Model.<computed> [as build] (/opt/outline/node_modules/sequelize-typescript/dist/model/model/model.js:138:28)\n    at /opt/outline/node_modules/sequelize/lib/model.js:1358:43\n    at Array.map (<anonymous>)\n    at user_authentication.bulkBuild (/opt/outline/node_modules/sequelize/lib/model.js:1358:22)"}

Replacing the helper with hash:64 in template.toml generates an appropriate hex key (64-chars = 32-bytes), making the template usable immediately.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/Dokploy/templates/pull/167 **Author:** [@deankerr](https://github.com/deankerr) **Created:** 6/5/2025 **Status:** ✅ Merged **Merged:** 6/20/2025 **Merged by:** [@Siumauricio](https://github.com/Siumauricio) **Base:** `main` ← **Head:** `fix-outline-secret-key` --- ### 📝 Commits (1) - [`11740ae`](https://github.com/Dokploy/templates/commit/11740aedc0fc672b8379ca591a07a99590d14d4c) fix(blueprint): generate 32-byte hex secret_key with hash helper ### 📊 Changes **1 file changed** (+1 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `blueprints/outline/template.toml` (+1 -1) </details> ### 📄 Description Outline expects a hex-encoded 32-byte random `SECRET_KEY` value, but currently a `base64:32` value is generated, making authentication impossible. [outline/.env.sample](https://github.com/outline/outline/blob/6a16dc07c154712fbe0ff2cf254a8f8ee97ad4f6/.env.sample#L25-L27) ``` # Generate a hex-encoded 32-byte random key. Use `openssl rand -hex 32` in your # terminal to generate a random value. SECRET_KEY=generate_a_new_key ``` ```json {"error":"Invalid key length","level":"error","message":"Failed to encrypt database column (accessToken). The SECRET_KEY environment variable is not the correct length.","stack":"RangeError: Invalid key length\n at Cipheriv.createCipherBase (node:internal/crypto/cipher:121:19)\n at Cipheriv.createCipherWithIV (node:internal/crypto/cipher:140:3)\n at new Cipheriv (node:internal/crypto/cipher:243:3)\n at Object.createCipheriv (node:crypto:147:10)\n at Object.createCipheriv (/opt/outline/node_modules/dd-trace/packages/datadog-instrumentations/src/crypto.js:29:27)\n at UserAuthentication.set (/opt/outline/node_modules/sequelize-encrypted/index.js:48:33)\n at UserAuthentication.set (/opt/outline/build/server/models/decorators/Encrypted.js:55:59)\n at UserAuthentication.set (/opt/outline/node_modules/sequelize/lib/model.js:2256:32)\n at UserAuthentication.set (/opt/outline/node_modules/sequelize/lib/model.js:2241:18)\n at UserAuthentication._initValues (/opt/outline/node_modules/sequelize/lib/model.js:156:10)\n at new Model (/opt/outline/node_modules/sequelize/lib/model.js:116:10)\n at new Model (/opt/outline/node_modules/sequelize-typescript/dist/model/model/model.js:14:9)\n at new Model (/opt/outline/build/server/models/base/Model.js:24:5)\n at new IdModel (/opt/outline/build/server/models/base/IdModel.js:20:5)\n at new UserAuthentication (/opt/outline/build/server/models/UserAuthentication.js:29:5)\n at new user_authentication (/opt/outline/build/server/models/decorators/Fix.js:21:7)\n at user_authentication.build (/opt/outline/node_modules/sequelize/lib/model.js:1344:12)\n at Model.<computed> (/opt/outline/node_modules/sequelize-typescript/dist/model/model/model.js:128:28)\n at Model.<computed> [as build] (/opt/outline/node_modules/sequelize-typescript/dist/model/model/model.js:138:28)\n at /opt/outline/node_modules/sequelize/lib/model.js:1358:43\n at Array.map (<anonymous>)\n at user_authentication.bulkBuild (/opt/outline/node_modules/sequelize/lib/model.js:1358:22)"} ``` Replacing the helper with `hash:64` in `template.toml` generates an appropriate hex key (64-chars = 32-bytes), making the template usable immediately. --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

GiteaMirror added the pull-request label 2025-11-22 20:33:36 -06:00

GiteaMirror closed this issue 2025-11-22 20:33:36 -06:00

GiteaMirror referenced this issue 2025-11-22 20:35:05 -06:00

[PR #258] [MERGED] Update Checkmate blueprint with new backend image and configuration #317

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

canary

dosu/doc-update-3913

dosu/doc-update-730

copilot/add-oneuptime-template

copilot/add-wazuh-template

copilot/add-docling-serve-template

copilot/fix-minio-image-deployment

copilot/initial-pr-setup

feat/update-template

fix/cicd

onetimesecret

No results found.

Labels

Clear labels

bug

documentation

pull-request

Mirrored from GitHub Pull Request

template

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/templates#258