pub/vault
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
55e333f0de0c2fcb0d642857e81b1b46ca387d96
vault/.gitlab-ci.yml
Vassiliy Yegorov a7c637fcac fix
2022-08-24 13:06:22 +07:00

25 lines
738 B
YAML
Raw Blame History

read_secrets:
image: vault:latest
script:
- echo $CI_COMMIT_REF_NAME
- echo $CI_COMMIT_REF_PROTECTED
- export VAULT_ADDR=http://vault.bildme.ru
- export VAULT_TOKEN="$(vault write -field=token auth/jwt/login role=gitlabci-role jwt=$CI_JOB_JWT)"
- export PASSWORD="$(vault kv get -field=password secret/gitlab/db1)"
- echo $PASSWORD
when: manual
## GitLab Premium supports read access to a HashiCorp Vault, and enables you to use Vault secrets in a CI job.
# read_secrets_native:
# variables:
# VAULT_ADDR: http://vault.bildme.ru
# VAULT_AUTH_ROLE: gitlabci-role
# secrets:
# PASSWORD:
# vault: secret/gitlab/db1
# file: false
# script:
# - echo $PASSWORD
# when: manual
Reference in New Issue View Git Blame Copy Permalink