Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Task](ci): Move from vault-injektor to secrets-injector #644

Open
1 task
ArtieReus opened this issue Nov 28, 2024 · 0 comments
Open
1 task

[Task](ci): Move from vault-injektor to secrets-injector #644

ArtieReus opened this issue Nov 28, 2024 · 0 comments
Assignees
@ArtieReus
Labels
greenhouse Greenhouse core related task infrastructure Infrastructure related issues, ci as well

Comments

@ArtieReus
Copy link
Collaborator

ArtieReus commented Nov 28, 2024
edited
Loading

Task Description
To comply with secret rotation requirements, references to the Vault should be updated to use the Secrets Injector. This will result in a secret that can be consumed directly in Kubernetes. Once the rotation mechanism is in place, the deployment will be ready for automatic rotation.

Sub-tasks

  • Change all vault references to use the secret injector.

Example:

    token: *vault(path: <path-to-the-secret>, field: <field>)
    token: vault+kvv2://secrets/<path-to-the-secret>/<field>

Reference:
<github-enterprise>/cc/secrets-injector
@ArtieReus ArtieReus self-assigned this Nov 28, 2024
@ArtieReus ArtieReus added greenhouse Greenhouse core related task infrastructure Infrastructure related issues, ci as well labels Nov 28, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ArtieReus ArtieReus

Labels
greenhouse Greenhouse core related task infrastructure Infrastructure related issues, ci as well
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ArtieReus