Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

docs: Reword SSO Client Secrets doc #8666

Merged
merged 3 commits into from May 10, 2022
Merged

docs: Reword SSO Client Secrets doc #8666

merged 3 commits into from May 10, 2022

Conversation

ichbinfrog
Copy link
Contributor

The Sensitive Data and SSO Client Secrets section can mislead users to thinking that the secret value needs to be base encoded twice. This PR attempts to reword to make the doc clearer.

Checklist:

  • Either (a) I've created an enhancement proposal and discussed it with the community, (b) this is a bug fix, or (c) this does not need to be in the release notes.
  • The title of the PR states what changed and the related issues number (used for the release note).
  • I've included "Closes [ISSUE #]" or "Fixes [ISSUE #]" in the description to automatically close the associated issue.
  • I've updated both the CLI and UI to expose my feature, or I plan to submit a second PR with them.
  • Does this PR require documentation updates?
  • I've updated documentation as required by this PR.
  • Optional. My organization is added to USERS.md.
  • I have signed off all my commits as required by DCO
  • I have written unit and/or e2e tests for my change. PRs without these are unlikely to be merged.
  • My build is green (troubleshooting builds).

@ichbinfrog
Reword sensitive data documentation
b4a6d8b 
Signed-off-by: Trung <trung.hoang@pricehubble.com>
@codecov
Copy link

codecov bot commented Mar 3, 2022
edited

Codecov Report

Merging #8666 (fe53030) into master (8cc8a7f) will decrease coverage by 0.01%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##           master    #8666      +/-   ##
==========================================
- Coverage   46.14%   46.12%   -0.02%     
==========================================
  Files         217      217              
  Lines       25912    25912              
==========================================
- Hits        11958    11953       -5     
- Misses      12297    12301       +4     
- Partials     1657     1658       +1
Impacted Files Coverage Δ
applicationset/services/scm_provider/github.go 75.29% <0.00%> (-5.89%) ⬇️
util/settings/settings.go 48.16% <0.00%> (ø)

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 8cc8a7f...fe53030. Read the comment docs.

kostis-codefresh
kostis-codefresh reviewed May 9, 2022
View reviewed changes
docs/operator-manual/user-management/index.md Outdated
to obtain the actual value. This allows you to store the `clientSecret` as a kubernetes secret.
Kubernetes secrets must be base64 encoded. To base64 encode your secret, you can run
`printf RAW_STRING | base64`.
`argocd-secret` can be used to store sensititve data which can be referenced by ArgoCD. Values starting with `$` in configmaps is interpreted as follows:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Minor Spelling mistakes:
sensititve data - >sensitive data
is interpreted -> are interpreted

kostis-codefresh
kostis-codefresh reviewed May 9, 2022
View reviewed changes
docs/operator-manual/user-management/index.md Outdated

Data should be base64 encoded before it is added to `argocd-secret`. You can do so by running `printf RAW_SECRET_STRING | base64`.
- If value has the form: `$<secret>:a.key.in.k8s.secret`, look for a k8s secret with the name `<secret>` (minus the `$`), and reads it value.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

and reads it value -> and read its value

kostis-codefresh
kostis-codefresh suggested changes May 9, 2022
View reviewed changes
Copy link
Member

@kostis-codefresh kostis-codefresh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some minor spelling mistakes. Otherwise looks good to me.

ichbinfrog and others added 2 commits May 9, 2022 19:31
@ichbinfrog
Correct typos
f47fcf4 
Signed-off-by: Trung <trung.hoang@pricehubble.com>
@pasha-codefresh
Merge branch 'master' into fix/sensitive-data-doc
fe53030
pasha-codefresh
pasha-codefresh approved these changes May 10, 2022
View reviewed changes
Copy link
Member

@pasha-codefresh pasha-codefresh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you!

@pasha-codefresh pasha-codefresh merged commit ce18611 into argoproj:master May 10, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kostis-codefresh kostis-codefresh kostis-codefresh requested changes

@pasha-codefresh pasha-codefresh pasha-codefresh approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@ichbinfrog @pasha-codefresh @kostis-codefresh