From 1273d0214d0eff4fac7a4a748121ae2cc4f4b7a7 Mon Sep 17 00:00:00 2001
From: Akis Kesoglou <akiskesoglou@gmail.com>
Date: Sat, 27 Oct 2018 19:38:26 +0300
Subject: [PATCH] Ensure builder token is set to a random value

---
 compose/services.yml | 2 +-
 scripts/make-env     | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/compose/services.yml b/compose/services.yml
index d8a9582..45470a3 100644
--- a/compose/services.yml
+++ b/compose/services.yml
@@ -41,7 +41,7 @@ services:
       REGISTRY2_HOST: registry.${OPENBALENA_HOST_NAME}
       REGISTRY_HOST: registry.${OPENBALENA_HOST_NAME}
       SENTRY_DSN:
-      TOKEN_AUTH_BUILDER_TOKEN: __unused__
+      TOKEN_AUTH_BUILDER_TOKEN: ${OPENBALENA_TOKEN_AUTH_BUILDER_TOKEN}
       TOKEN_AUTH_CERT_ISSUER: api.${OPENBALENA_HOST_NAME}
       TOKEN_AUTH_CERT_KEY: ${OPENBALENA_TOKEN_AUTH_KEY}
       TOKEN_AUTH_CERT_KID: ${OPENBALENA_TOKEN_AUTH_KID}
diff --git a/scripts/make-env b/scripts/make-env
index aa8309b..1ba6300 100755
--- a/scripts/make-env
+++ b/scripts/make-env
@@ -43,6 +43,7 @@ export OPENBALENA_RESINOS_REGISTRY_CODE=$(randstr 32)
 export OPENBALENA_ROOT_CA=$(b64encode "$ROOT_CA")
 export OPENBALENA_ROOT_CRT=$(b64encode "${ROOT_CRT}")
 export OPENBALENA_ROOT_KEY=$(b64encode "${ROOT_KEY}")
+export OPENBALENA_TOKEN_AUTH_BUILDER_TOKEN=$(randstr 64)
 export OPENBALENA_TOKEN_AUTH_PUB=$(b64encode "$JWT_CRT")
 export OPENBALENA_TOKEN_AUTH_KEY=$(b64encode "$JWT_KEY")
 export OPENBALENA_TOKEN_AUTH_KID=$(b64encode "$JWT_KID")