Mastodon Bot?
-
I'm currently making a Mastodon Bot, and I'm not entirely sure how to host it, like where do i ensure the API Access Token's and such aren't at risk of public view.
I've made sure, and I haven't pushed yet, but I've ensured that
.envis inside.gitignore. I'm just unsure, and would love some help. This is just a little project I found on GitHub, and thought I'd might as well learn a few things of how things like this are developed. -
[email protected]replied to [email protected] last edited by
I was going to use Vercel, but that is more for Web Hosting (Web apps), and NetLify. SupaBase was my next big option, but im lost in that lol
-
P [email protected] shared this topic
-
[email protected]replied to [email protected] last edited by
I’ve been using Netlify for smaller apps, but lately Railway has been my go too. Pretty cheap too and it covers mostly everything you’ll need to deploy app regardless of language or framework. Their UI makes it all very easy to manage with the “nodes”.
Both of those services (as do most) give you the option to load environment variables onto the app itself.
So the process is normally this:
You have env vars you’re using locally like API tokens that you’re putting in your .env during development. Now you’re ready to deploy. Because you’ve gitignored that file locally, you don’t have to worry about secrets being in your code base, but also, because they’re environment variables, you’re framework will see those variables available in the “box”.Ultimately, there’s no difference between having stuff in your local .env and injected by a service during deployment. Just make sure the env var keys are the same in each case.
Hope that’s not too confusing. If so, I’m happy to clarify anything.