mirror of
https://github.com/SAP/jenkins-library.git
synced 2024-12-12 10:55:20 +02:00
(Vault) add vaultSecretFile References (#2314)
* add vaultSecretFile References * add vaultRef to protecode Co-authored-by: Oliver Nocon <33484802+OliverNocon@users.noreply.github.com>
This commit is contained in:
parent
9d461c6753
commit
0f48a229d2
@ -222,6 +222,12 @@ func kanikoExecuteMetadata() config.StepData {
|
|||||||
Name: "dockerConfigJsonCredentialsId",
|
Name: "dockerConfigJsonCredentialsId",
|
||||||
Type: "secret",
|
Type: "secret",
|
||||||
},
|
},
|
||||||
|
|
||||||
|
{
|
||||||
|
Name: "",
|
||||||
|
Paths: []string{"$(vaultPath)/docker-config", "$(vaultBasePath)/$(vaultPipelineName)/docker-config", "$(vaultBasePath)/GROUP-SECRETS/docker-config"},
|
||||||
|
Type: "vaultSecretFile",
|
||||||
|
},
|
||||||
},
|
},
|
||||||
Scope: []string{"PARAMETERS", "STAGES", "STEPS"},
|
Scope: []string{"PARAMETERS", "STAGES", "STEPS"},
|
||||||
Type: "string",
|
Type: "string",
|
||||||
|
@ -301,6 +301,12 @@ func kubernetesDeployMetadata() config.StepData {
|
|||||||
Name: "kubeConfigFileCredentialsId",
|
Name: "kubeConfigFileCredentialsId",
|
||||||
Type: "secret",
|
Type: "secret",
|
||||||
},
|
},
|
||||||
|
|
||||||
|
{
|
||||||
|
Name: "",
|
||||||
|
Paths: []string{"$(vaultPath)/kube-config", "$(vaultBasePath)/$(vaultPipelineName)/kube-config", "$(vaultBasePath)/GROUP-SECRETS/kube-config"},
|
||||||
|
Type: "vaultSecretFile",
|
||||||
|
},
|
||||||
},
|
},
|
||||||
Scope: []string{"GENERAL", "PARAMETERS", "STAGES", "STEPS"},
|
Scope: []string{"GENERAL", "PARAMETERS", "STAGES", "STEPS"},
|
||||||
Type: "string",
|
Type: "string",
|
||||||
|
@ -228,6 +228,12 @@ func protecodeExecuteScanMetadata() config.StepData {
|
|||||||
Name: "dockerConfigJsonCredentialsId",
|
Name: "dockerConfigJsonCredentialsId",
|
||||||
Type: "secret",
|
Type: "secret",
|
||||||
},
|
},
|
||||||
|
|
||||||
|
{
|
||||||
|
Name: "",
|
||||||
|
Paths: []string{"$(vaultPath)/docker-config", "$(vaultBasePath)/$(vaultPipelineName)/docker-config", "$(vaultBasePath)/GROUP-SECRETS/docker-config"},
|
||||||
|
Type: "vaultSecretFile",
|
||||||
|
},
|
||||||
},
|
},
|
||||||
Scope: []string{"PARAMETERS", "STAGES", "STEPS"},
|
Scope: []string{"PARAMETERS", "STAGES", "STEPS"},
|
||||||
Type: "string",
|
Type: "string",
|
||||||
|
@ -97,6 +97,11 @@ spec:
|
|||||||
resourceRef:
|
resourceRef:
|
||||||
- name: dockerConfigJsonCredentialsId
|
- name: dockerConfigJsonCredentialsId
|
||||||
type: secret
|
type: secret
|
||||||
|
- type: vaultSecretFile
|
||||||
|
paths:
|
||||||
|
- $(vaultPath)/docker-config
|
||||||
|
- $(vaultBasePath)/$(vaultPipelineName)/docker-config
|
||||||
|
- $(vaultBasePath)/GROUP-SECRETS/docker-config
|
||||||
- name: dockerfilePath
|
- name: dockerfilePath
|
||||||
aliases:
|
aliases:
|
||||||
- name: dockerfile
|
- name: dockerfile
|
||||||
|
@ -225,6 +225,11 @@ spec:
|
|||||||
resourceRef:
|
resourceRef:
|
||||||
- name: kubeConfigFileCredentialsId
|
- name: kubeConfigFileCredentialsId
|
||||||
type: secret
|
type: secret
|
||||||
|
- type: vaultSecretFile
|
||||||
|
paths:
|
||||||
|
- $(vaultPath)/kube-config
|
||||||
|
- $(vaultBasePath)/$(vaultPipelineName)/kube-config
|
||||||
|
- $(vaultBasePath)/GROUP-SECRETS/kube-config
|
||||||
- name: kubeContext
|
- name: kubeContext
|
||||||
type: string
|
type: string
|
||||||
description: Defines the context to use from the \"kubeconfig\" file.
|
description: Defines the context to use from the \"kubeconfig\" file.
|
||||||
|
@ -74,6 +74,11 @@ spec:
|
|||||||
resourceRef:
|
resourceRef:
|
||||||
- name: dockerConfigJsonCredentialsId
|
- name: dockerConfigJsonCredentialsId
|
||||||
type: secret
|
type: secret
|
||||||
|
- type: vaultSecretFile
|
||||||
|
paths:
|
||||||
|
- $(vaultPath)/docker-config
|
||||||
|
- $(vaultBasePath)/$(vaultPipelineName)/docker-config
|
||||||
|
- $(vaultBasePath)/GROUP-SECRETS/docker-config
|
||||||
- name: cleanupMode
|
- name: cleanupMode
|
||||||
type: string
|
type: string
|
||||||
description: Decides which parts are removed from the Protecode backend after the scan
|
description: Decides which parts are removed from the Protecode backend after the scan
|
||||||
|
Loading…
Reference in New Issue
Block a user