-
-
Notifications
You must be signed in to change notification settings - Fork 1.7k
Readd the APP_SECRET value #1577
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Conversation
It should be added to .env.local instead |
I added it to the |
Both commiting the secret or the .env.local are wrong but I think commiting the .env.local is more wrong. It prevent us to add the SYMFONY_IDE env var. Yes I can add it but I'll keep a diff every time. Since we add a comment, I think it's fine to add the secret to the .env file |
My bad, this is added to |
If I add it to Folks, this is not a normal Symfony app. It's a bit special and its main feature is that it must work under all circumstances and for all users ( So, is there any alternative to just defining the secret in the main |
This is also a showcase of best practices, that's why we should find a better option.
I don't think this is valid objection. If you run without composer scripts, that's your issue.
That's the issue with #1574 to me: not dealing with git clone. |
Let's close in favor of #1579 which looks like the solution we were looking for. Thanks! |
Context:
As explained in #1574, we're not fulfilling that promise right now because of the change made in #1532. So, let's fix that. The change proposed in #1574 is correct ... but it could be not enough. If you run Composer with the
--no-scripts
option, the proposed script won't run and the error will happen again.So, in this PR I propose to go back to what worked before ... and add a message explaining that folks don't need to do that in their apps; this is just for the Symfony Demo. There are other parts of the app where we say "we do this because this is a Demo app and bla bla, don't do this in your own app". So, this should be fine.