Closed
Description
My oracledb_exporter.service file has the lines:
Environment="vault_tenancy_ocid=ocid1.tenancy.oc1..aaaaaaaa..."
Environment="VAULT_ID=<the_name_of_my_vault>" # name or id? Id returned an error when starting the service
Environment="VAULT_SECRET_NAME=oracledb_exporter"
Start the service with this environment fails with:
systemctl status -l oracledb_exporter
● oracledb_exporter.service - Prometheus oracledb_exporter
Loaded: loaded (/etc/systemd/system/oracledb_exporter.service; enabled; vendor preset: disabled)
Active: failed (Result: exit-code) since Tue 2024-08-06 11:42:27 CEST; 3s ago
Process: 4321 ExecStart=/usr/local/bin/oracledb_exporter --log.level debug --web.listen-address 0.0.0.0:9161 --default.metrics /etc/oracledb_exporter/default-metrics.toml (code=exited, status=1/FAILURE)
Main PID: 4321 (code=exited, status=1/FAILURE)
Started Prometheus oracledb_exporter.
ts=2024-08-06T09:42:27.513Z caller=main.go:65 level=info msg="VAULT_ID env var is present so using OCI Vault" vault_name=<the_name_of_my_vault>
oracledb_exporter.service: main process exited, code=exited, status=1/FAILURE
Unit oracledb_exporter.service entered failed state.
oracledb_exporter.service failed.
loglevel is debug
When I query the secret with the OCI CLI, I get the correct value. But I used the compartment ID.
COMPARTMENT_OCID=<my_compartment_ocid"
SECRET_OCID=$(oci vault secret list --compartment-id "$COMPARTMENT_OCID" \
--query "data[?\"secret-name\" == '$SECRET_NAME'].id | [0]" \
--raw-output
)
SECRET=$(oci secrets secret-bundle get \
--secret-id "$SECRET_OCID" \
--raw-output \
--query "data.\"secret-bundle-content\".content" | base64 -d
)
Metadata
Metadata
Assignees
Labels
No labels