coder
diff --git a/‎agent/proto/agent.pb.go
Lines changed: 1034 additions & 931 deletions b/‎agent/proto/agent.pb.go
Lines changed: 1034 additions & 931 deletions
diff --git a/‎agent/proto/agent.proto
Lines changed: 8 additions & 0 deletions b/‎agent/proto/agent.proto
Lines changed: 8 additions & 0 deletions
diff --git a/‎cli/user_secrets.go
Lines changed: 20 additions & 4 deletions b/‎cli/user_secrets.go
Lines changed: 20 additions & 4 deletions
diff --git a/‎coderd/apidoc/docs.go
Lines changed: 80 additions & 2 deletions b/‎coderd/apidoc/docs.go
Lines changed: 80 additions & 2 deletions
diff --git a/‎coderd/apidoc/swagger.json
Lines changed: 72 additions & 2 deletions b/‎coderd/apidoc/swagger.json
Lines changed: 72 additions & 2 deletions
diff --git a/‎coderd/database/db2sdk/db2sdk.go
Lines changed: 2 additions & 0 deletions b/‎coderd/database/db2sdk/db2sdk.go
Lines changed: 2 additions & 0 deletions
diff --git a/‎coderd/database/dump.sql
Lines changed: 2 additions & 0 deletions b/‎coderd/database/dump.sql
Lines changed: 2 additions & 0 deletions
diff --git a/‎coderd/database/migrations/000350_add_user_secrets.up.sql
Lines changed: 9 additions & 0 deletions b/‎coderd/database/migrations/000350_add_user_secrets.up.sql
Lines changed: 9 additions & 0 deletions
diff --git a/‎coderd/database/models.go
Lines changed: 2 additions & 0 deletions b/‎coderd/database/models.go
Lines changed: 2 additions & 0 deletions
@@ -98,6 +98,14 @@ message Manifest {
 	repeated WorkspaceApp apps = 11;
 	repeated WorkspaceAgentMetadata.Description metadata = 12;
 	repeated WorkspaceAgentDevcontainer devcontainers = 17;
+
+  map<string,Secret> user_secrets = 19;
+}
+
+message Secret {
+  string name = 1;
+  string env_name = 2;
+  string file_path = 3;
 }
 
 message WorkspaceAgentDevcontainer {
 
@@ -26,6 +26,8 @@ func (r *RootCmd) secretCreate() *serpent.Command {
 	client := new(codersdk.Client)
 	var value string
 	var description string
+	var envName string
+	var filePath string
 	cmd := &serpent.Command{
 		Use:   "create <name>",
 		Short: "Create a new user secret",
@@ -42,6 +44,8 @@ func (r *RootCmd) secretCreate() *serpent.Command {
 				Name:        name,
 				Value:       value,
 				Description: description,
+				EnvName:     envName,
+				FilePath:    filePath,
 			})
 			if err != nil {
 				return err
@@ -61,6 +65,16 @@ func (r *RootCmd) secretCreate() *serpent.Command {
 			Description: "Description of the secret.",
 			Value:       serpent.StringOf(&description),
 		},
+		{
+			Flag:        "env_name",
+			Description: "Environment variable name of the secret.",
+			Value:       serpent.StringOf(&envName),
+		},
+		{
+			Flag:        "file_path",
+			Description: "File path of the secret.",
+			Value:       serpent.StringOf(&filePath),
+		},
 	}
 	return cmd
 }
@@ -79,9 +93,10 @@ func (r *RootCmd) secretList() *serpent.Command {
 			if err != nil {
 				return err
 			}
-			fmt.Fprintf(inv.Stdout, "ID | Name | Description\n")
+			fmt.Fprintf(inv.Stdout, "ID | Name | Description | EnvName | FilePath\n")
 			for _, secret := range secretList.Secrets {
-				fmt.Fprintf(inv.Stdout, "%v - %v - %v\n", secret.ID, secret.Name, secret.Description)
+				fmt.Fprintf(inv.Stdout, "%v - %v - %v - %v - %v\n",
+					secret.ID, secret.Name, secret.Description, secret.EnvName, secret.FilePath)
 			}
 			return nil
 		},
@@ -118,8 +133,9 @@ func (r *RootCmd) secretGet() *serpent.Command {
 			}
 			value := userSecretValue.Value
 
-			fmt.Fprintf(inv.Stdout, "ID | Name | Description | Value\n")
-			fmt.Fprintf(inv.Stdout, "%v - %v - %v - %v\n", secret.ID, secret.Name, secret.Description, value)
+			fmt.Fprintf(inv.Stdout, "ID | Name | Description | Value | EnvName | FilePath\n")
+			fmt.Fprintf(inv.Stdout, "%v - %v - %v - %v - %v - %v\n",
+				secret.ID, secret.Name, secret.Description, value, secret.EnvName, secret.FilePath)
 			return nil
 		},
 	}
 
@@ -896,6 +896,8 @@ func UserSecret(secret database.UserSecret) codersdk.UserSecret {
 		UserID:      secret.UserID,
 		Name:        secret.Name,
 		Description: secret.Description,
+		EnvName:     secret.EnvName,
+		FilePath:    secret.FilePath,
 		CreatedAt:   secret.CreatedAt,
 		UpdatedAt:   secret.UpdatedAt,
 	}
 
@@ -12,6 +12,15 @@ CREATE TABLE user_secrets (
     -- If this is NULL, the secret value is not encrypted.
     value_key_id TEXT REFERENCES dbcrypt_keys(active_key_digest),
 
+	-- Auto-injection settings
+	-- Environment variable name (e.g., "DATABASE_PASSWORD", "API_KEY")
+	-- Empty string means don't inject as env var
+	env_name TEXT NOT NULL DEFAULT '',
+
+	-- File path where secret should be written (e.g., "/home/coder/.ssh/id_rsa")
+	-- Empty string means don't inject as file
+	file_path TEXT NOT NULL DEFAULT '',
+
     -- Timestamps
     created_at TIMESTAMP WITH TIME ZONE DEFAULT CURRENT_TIMESTAMP NOT NULL,
     updated_at TIMESTAMP WITH TIME ZONE DEFAULT CURRENT_TIMESTAMP NOT NULL
Original file line number	Diff line number	Diff line change
`@@ -896,6 +896,8 @@ func UserSecret(secret database.UserSecret) codersdk.UserSecret {`
`896`	`896`	`UserID: secret.UserID,`
`897`	`897`	`Name: secret.Name,`
`898`	`898`	`Description: secret.Description,`
	`899`	`+ EnvName: secret.EnvName,`
	`900`	`+ FilePath: secret.FilePath,`
`899`	`901`	`CreatedAt: secret.CreatedAt,`
`900`	`902`	`UpdatedAt: secret.UpdatedAt,`
`901`	`903`	`}`