Skip to content

fix(deployment): properly expose service account key for secret manager #296

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 14, 2023
Merged

fix(deployment): properly expose service account key for secret manager #296

merged 1 commit into from
Aug 14, 2023

Conversation

zaibon
Copy link
Contributor

@zaibon zaibon commented Aug 14, 2023
edited by migmartri
Loading

We need to mount the service account key as a file into the controlplane container when using GCP secret manager.

Fixes #295

@zaibon zaibon force-pushed the gcp-sercret-manager-helm branch 2 times, most recently from 858cf4f to 26f087d Compare August 14, 2023 10:43
@migmartri migmartri requested review from migmartri and gr0 August 14, 2023 11:06
@zaibon zaibon force-pushed the gcp-sercret-manager-helm branch 2 times, most recently from a250ff5 to 338baad Compare August 14, 2023 12:23
@zaibon zaibon marked this pull request as ready for review August 14, 2023 12:23
migmartri
migmartri reviewed Aug 14, 2023
View reviewed changes
Copy link
Member

@migmartri migmartri left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It looks good!

Just added one comment about keeping the required stanza, let me know what you think

gr0
gr0 approved these changes Aug 14, 2023
View reviewed changes
Copy link
Collaborator

@gr0 gr0 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Great stuff @zaibon - thanks for taking care of that 🙇

migmartri
migmartri approved these changes Aug 14, 2023
View reviewed changes
Copy link
Member

@migmartri migmartri left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

See my comment below in case it makes sense.

@zaibon
fix(deployment): properly expose service account key for secret manager
e470134 
We need to mount the service account key as a file into the controlplane and cas container when using GCP secret manager.

- use proper key in sercret manager service account configuration
- update helm chart README
- be consitent in chart template and use 'serviceaccountkey' everywhere

Signed-off-by: Christophe de Carvalho <christophe@archipelo.co>
@zaibon zaibon force-pushed the gcp-sercret-manager-helm branch from 338baad to e470134 Compare August 14, 2023 15:22
@migmartri migmartri merged commit b6b2fe7 into chainloop-dev:main Aug 14, 2023
@migmartri migmartri mentioned this pull request Aug 15, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@migmartri migmartri migmartri approved these changes

@gr0 gr0 gr0 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Helm chart deployment using GCP secret manager does not configure authentication properly
3 participants
@zaibon @migmartri @gr0