1
0
mirror of https://github.com/SAP/jenkins-library.git synced 2024-12-12 10:55:20 +02:00

(Vault) add vaultSecretFile References (#2314)

* add vaultSecretFile References

* add vaultRef to protecode

Co-authored-by: Oliver Nocon <33484802+OliverNocon@users.noreply.github.com>
This commit is contained in:
Kevin Stiehl 2020-11-06 18:06:19 +01:00 committed by GitHub
parent 9d461c6753
commit 0f48a229d2
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 33 additions and 0 deletions

View File

@ -222,6 +222,12 @@ func kanikoExecuteMetadata() config.StepData {
Name: "dockerConfigJsonCredentialsId", Name: "dockerConfigJsonCredentialsId",
Type: "secret", Type: "secret",
}, },
{
Name: "",
Paths: []string{"$(vaultPath)/docker-config", "$(vaultBasePath)/$(vaultPipelineName)/docker-config", "$(vaultBasePath)/GROUP-SECRETS/docker-config"},
Type: "vaultSecretFile",
},
}, },
Scope: []string{"PARAMETERS", "STAGES", "STEPS"}, Scope: []string{"PARAMETERS", "STAGES", "STEPS"},
Type: "string", Type: "string",

View File

@ -301,6 +301,12 @@ func kubernetesDeployMetadata() config.StepData {
Name: "kubeConfigFileCredentialsId", Name: "kubeConfigFileCredentialsId",
Type: "secret", Type: "secret",
}, },
{
Name: "",
Paths: []string{"$(vaultPath)/kube-config", "$(vaultBasePath)/$(vaultPipelineName)/kube-config", "$(vaultBasePath)/GROUP-SECRETS/kube-config"},
Type: "vaultSecretFile",
},
}, },
Scope: []string{"GENERAL", "PARAMETERS", "STAGES", "STEPS"}, Scope: []string{"GENERAL", "PARAMETERS", "STAGES", "STEPS"},
Type: "string", Type: "string",

View File

@ -228,6 +228,12 @@ func protecodeExecuteScanMetadata() config.StepData {
Name: "dockerConfigJsonCredentialsId", Name: "dockerConfigJsonCredentialsId",
Type: "secret", Type: "secret",
}, },
{
Name: "",
Paths: []string{"$(vaultPath)/docker-config", "$(vaultBasePath)/$(vaultPipelineName)/docker-config", "$(vaultBasePath)/GROUP-SECRETS/docker-config"},
Type: "vaultSecretFile",
},
}, },
Scope: []string{"PARAMETERS", "STAGES", "STEPS"}, Scope: []string{"PARAMETERS", "STAGES", "STEPS"},
Type: "string", Type: "string",

View File

@ -97,6 +97,11 @@ spec:
resourceRef: resourceRef:
- name: dockerConfigJsonCredentialsId - name: dockerConfigJsonCredentialsId
type: secret type: secret
- type: vaultSecretFile
paths:
- $(vaultPath)/docker-config
- $(vaultBasePath)/$(vaultPipelineName)/docker-config
- $(vaultBasePath)/GROUP-SECRETS/docker-config
- name: dockerfilePath - name: dockerfilePath
aliases: aliases:
- name: dockerfile - name: dockerfile

View File

@ -225,6 +225,11 @@ spec:
resourceRef: resourceRef:
- name: kubeConfigFileCredentialsId - name: kubeConfigFileCredentialsId
type: secret type: secret
- type: vaultSecretFile
paths:
- $(vaultPath)/kube-config
- $(vaultBasePath)/$(vaultPipelineName)/kube-config
- $(vaultBasePath)/GROUP-SECRETS/kube-config
- name: kubeContext - name: kubeContext
type: string type: string
description: Defines the context to use from the \"kubeconfig\" file. description: Defines the context to use from the \"kubeconfig\" file.

View File

@ -74,6 +74,11 @@ spec:
resourceRef: resourceRef:
- name: dockerConfigJsonCredentialsId - name: dockerConfigJsonCredentialsId
type: secret type: secret
- type: vaultSecretFile
paths:
- $(vaultPath)/docker-config
- $(vaultBasePath)/$(vaultPipelineName)/docker-config
- $(vaultBasePath)/GROUP-SECRETS/docker-config
- name: cleanupMode - name: cleanupMode
type: string type: string
description: Decides which parts are removed from the Protecode backend after the scan description: Decides which parts are removed from the Protecode backend after the scan