From 4dde350e59e0e0f7df61f43a48a7a2485e1e3ab1 Mon Sep 17 00:00:00 2001
From: Dev Server <dev@uchill.online>
Date: Thu, 12 Feb 2026 23:10:14 +0300
Subject: [PATCH] fix: use key_path with setup step for SSH key

---
 .gitea/workflows/deploy-dev.yml | 40 +++++++++++++++++++++------------
 1 file changed, 26 insertions(+), 14 deletions(-)

diff --git a/.gitea/workflows/deploy-dev.yml b/.gitea/workflows/deploy-dev.yml
index 2a64d72..660eeff 100644
--- a/.gitea/workflows/deploy-dev.yml
+++ b/.gitea/workflows/deploy-dev.yml
@@ -9,24 +9,38 @@ jobs:
     runs-on: ubuntu-latest
     
     steps:
-      - name: Debug Secrets
+      - name: Setup SSH Key
         run: |
-          echo "=== Debugging Secrets ==="
-          echo "DEV_HOST: ${{ secrets.DEV_HOST }}"
-          echo "DEV_USER: ${{ secrets.DEV_USER }}"
-          echo "SSH_PRIVATE_KEY length: ${#SSH_PRIVATE_KEY}"
-          echo "SSH_PRIVATE_KEY first 50 chars: ${SSH_PRIVATE_KEY:0:50}"
-          echo "All secrets:"
-          env | grep -E "SECRET|SSH|DEV" || echo "No secrets found"
+          echo "=== Checking SSH_PRIVATE_KEY secret ==="
+          if [ -z "$SSH_PRIVATE_KEY" ]; then
+            echo "ERROR: SSH_PRIVATE_KEY environment variable is empty!"
+            echo "Checking secrets directly..."
+            if [ -z "${{ secrets.SSH_PRIVATE_KEY }}" ]; then
+              echo "ERROR: secrets.SSH_PRIVATE_KEY is also empty!"
+              exit 1
+            else
+              echo "secrets.SSH_PRIVATE_KEY exists, length: ${#{{ secrets.SSH_PRIVATE_KEY }}}"
+            fi
+          else
+            echo "SSH_PRIVATE_KEY env var exists, length: ${#SSH_PRIVATE_KEY}"
+          fi
+          mkdir -p ~/.ssh
+          echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/deploy_key
+          chmod 600 ~/.ssh/deploy_key
+          echo "SSH key file created. Checking format..."
+          head -1 ~/.ssh/deploy_key
+          tail -1 ~/.ssh/deploy_key
+          wc -l ~/.ssh/deploy_key
+          ssh-keyscan -H ${{ secrets.DEV_HOST }} >> ~/.ssh/known_hosts 2>/dev/null || true
+        env:
+          SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
       
       - name: Deploy to Dev Server
         uses: appleboy/ssh-action@v1.0.0
-        env:
-          SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
         with:
           host: ${{ secrets.DEV_HOST }}
           username: ${{ secrets.DEV_USER }}
-          key: ${{ secrets.SSH_PRIVATE_KEY }}
+          key_path: ~/.ssh/deploy_key
           use_insecure_cipher: true
           debug: true
           script: |
@@ -50,12 +64,10 @@ jobs:
       
       - name: Health Check
         uses: appleboy/ssh-action@v1.0.0
-        env:
-          SSH_PRIVATE_KEY: ${{ secrets.SSH_PRIVATE_KEY }}
         with:
           host: ${{ secrets.DEV_HOST }}
           username: ${{ secrets.DEV_USER }}
-          key: ${{ secrets.SSH_PRIVATE_KEY }}
+          key_path: ~/.ssh/deploy_key
           use_insecure_cipher: true
           debug: true
           script: |