feat: Add setup to read secrets from Vault and mirror to GSM (!92) · Merge requests · GitLab.com / GitLab Infrastructure Team / platform / Runway / runwayctl

Graeme Gillies requested to merge ggillies/add-vault-read into main Sep 29, 2023

This change allows the reconciler (if it has Vault access) to read all secrets from Vault (for the environment/service combination we are deploying) and mirror them over into GSM.

This change will also then expose these secrets as environment variables to the Cloud Run container of Runway.

The pattern is that the secret name in Vault will be used as the key for the environment variable, and in Vault, each secret must have a key called "value", the value of which will be used as the value

Edited Oct 04, 2023 by Graeme Gillies

feat: Add setup to read secrets from Vault and mirror to GSM

Merge request reports