Skip to content
This repository has been archived by the owner on Jul 8, 2023. It is now read-only.

CI - Use License Key and API Key Secrets from Vault #26

Merged
merged 7 commits into from
Mar 23, 2023
Merged

CI - Use License Key and API Key Secrets from Vault #26

merged 7 commits into from
Mar 23, 2023

Conversation

clintoncwolfe
Copy link
Contributor

@clintoncwolfe clintoncwolfe commented Mar 21, 2023
edited

Our temporary solution for authentication to the licensing server involves a bearer token. We're reading it from Vault.

Likewise, we'll now need to provide a license key to the functional tests. We're providing a licensing key via Vault.

Implementation for linux and windows verify scripts provided.

We're just reading from vault and setting ENV vars. For local development you'll ned to set the env vars still.

Description

Related Issue

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New content (non-breaking change)
  • Breaking change (a content change which would break existing functionality or processes)

Checklist:

  • I have read the CONTRIBUTING document.

@clintoncwolfe
Enable secrets mode on verify pipelines, which apparently works on ru…
e22d373 
…by3.0 image anyway on coverage pipeline

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
@clintoncwolfe
Fetch chef licensing server and API key from vault, linux implementation
b4cd97d 
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
@clintoncwolfe clintoncwolfe requested a review from a team as a code owner March 21, 2023 18:16
ahasunos and others added 4 commits March 22, 2023 03:22
@ahasunos
Fetch chef licensing server and API key from vault, windows implement…
8b8dba8 
…ation

Signed-off-by: Sonu Saha <sonu.saha@progress.com>
@clintoncwolfe
Add diagnostic to test whether API key has been set and exit if not
344364e 
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
@clintoncwolfe
Secrets missed on two jobs
34dc019 
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
@ahasunos
Add diagnostic to test whether API key has been set on windows
ee0dd55 
Signed-off-by: Sonu Saha <sonu.saha@progress.com>
@clintoncwolfe
Add license key to env var list and gate verify pipeline on it
cda80c2 
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
@clintoncwolfe clintoncwolfe changed the title CI - Use License API Key Secrets from Vault CI - Use License Key and API Key Secrets from Vault Mar 23, 2023
@clintoncwolfe clintoncwolfe merged commit d8200f8 into inspec-6 Mar 23, 2023
@clintoncwolfe clintoncwolfe deleted the cw/secrets-from-vault branch March 23, 2023 18:47
@ahasunos ahasunos restored the cw/secrets-from-vault branch April 13, 2023 10:49
@ahasunos ahasunos deleted the cw/secrets-from-vault branch April 13, 2023 11:07
sathish-progress pushed a commit that referenced this pull request May 17, 2023
@clintoncwolfe @ahasunos @sathish-progress
CI - Use License Key and API Key Secrets from Vault (#26)
8db6bc3 
* Enable secrets mode on verify pipelines, which apparently works on ruby3.0 image anyway on coverage pipeline

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Fetch chef licensing server and API key from vault, linux implementation

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Fetch chef licensing server and API key from vault, windows implementation

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add diagnostic to test whether API key has been set and exit if not

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Secrets missed on two jobs

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Add diagnostic to test whether API key has been set on windows

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add license key to env var list and gate verify pipeline on it

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

---------

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Signed-off-by: Sonu Saha <sonu.saha@progress.com>
Co-authored-by: Sonu Saha <sonu.saha@progress.com>
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@ahasunos ahasunos ahasunos approved these changes

@Nik08 Nik08 Awaiting requested review from Nik08 Nik08 was automatically assigned from inspec/inspec-core-team

Assignees

@clintoncwolfe clintoncwolfe

Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@clintoncwolfe @ahasunos