Add multi-team lookup to Lockbox backend by PrithviBadiga · Pull Request #65695 · apache/airflow

PrithviBadiga · 2026-04-22T19:45:01Z

Adds multi-team lookup support to LockboxSecretBackend.

Updates:

look up team-scoped secrets first when team_name is provided
fall back to the global secret when no team-scoped secret exists
avoid resolving team-scoped identifiers as global secrets when team_name is not provided
document the Lockbox team-scoped naming convention

Lookup behavior:

Verification:

AIRFLOW_HOME=$(mktemp -d) PYTHONPATH=/Users/prith/Desktop/Codex/airflow-65682/airflow-core/src:/Users/prith/Desktop/Codex/airflow-65682/providers/yandex/src /Users/prith/Desktop/Codex/airflow/.venv/bin/python -m pytest /Users/prith/Desktop/Codex/airflow-65689-yandex/providers/yandex/tests/unit/yandex/secrets/test_lockbox.py
/Users/prith/Desktop/Codex/airflow/.venv/bin/python -m ruff check /Users/prith/Desktop/Codex/airflow-65689-yandex/providers/yandex/src/airflow/providers/yandex/secrets/lockbox.py /Users/prith/Desktop/Codex/airflow-65689-yandex/providers/yandex/tests/unit/yandex/secrets/test_lockbox.py
/Users/prith/Desktop/Codex/airflow/.venv/bin/python -m ruff format --check /Users/prith/Desktop/Codex/airflow-65689-yandex/providers/yandex/src/airflow/providers/yandex/secrets/lockbox.py /Users/prith/Desktop/Codex/airflow-65689-yandex/providers/yandex/tests/unit/yandex/secrets/test_lockbox.py

Part of: #65682

Add multi-team lookup to Lockbox backend

ddb17b6

boring-cyborg Bot added area:providers area:secrets kind:documentation provider:yandex labels Apr 22, 2026

PrithviBadiga mentioned this pull request Apr 22, 2026

Add multi-team lookup to secrets backends #65689

Closed

potiuk added the ready for maintainer review Set after triaging when all criteria pass. label Apr 23, 2026

Provide feedback