Notes git - Remove the secret

Source : https://docs.gitlab.com/ee/user/application_security/secret_detection/secret_push_protection/index.html

Remove the secret Remove a blocked secret to allow the commit to be pushed to GitLab. The method of removing the secret depends on how recently it was committed. The instructions below use the Git CLI client, but you can achieve the same result by using another Git client.

1. Remove the secrets from the files.
2. Stage the changes with git add < file-name >.
3. Modify the most recent commit to include the changed files with git commit --amend.
4. Push your changes with git push.

1. Optional. Watch a short demo of removing secrets from your commits.
2. Identify the commit SHA from the push error message. If there are multiple, find the earliest using git log.
3. Create a copy branch to work from with git switch --create copy-branch so you can reset to the original branch if the rebase encounters issues.
4. Use git rebase -i <commit-sha>~1 to start an interactive rebase.
5. Mark the offending commits for editing by changing the pick command to edit in the editor.
6. Remove the secrets from the files.
7. Stage the changes with git add < file-name >.
8. Commit the changed files with git commit --amend.
9. Continue the rebase with git rebase --continue until all secrets are removed.
10. Push your changes from the copy branch to your original remote branch with git push --force --set-upstream origin copy-branch:<original-branch>.
11. When you are satisfied with the changes, consider the following optional cleanup steps.
    1. Optional. Delete the original branch with git branch --delete --force <original-branch>.
    2. Optional. Replace the original branch by renaming the copy branch with git branch --move copy-branch <original-branch>.