Zemke-Rhyne secrets have been migrated to Vault under ops/secrets/<old name>.
Vault offers a concept of path to organize secrets a hierarchical way,
while under Zemke-Rhyne, the name of the secret used dots.
Ref T930
Details
Details
- Reviewers
dereckson philectro - Maniphest Tasks
- T930: Secrets to migrate from DevCentral to Vault
- Commits
- rOPS2fc953ee6496: Migrate former Zemke-Rhyne secrets from a.b.c to a/b/c path
Refresh Vault policies, deploy a service on PaaS Docker
Diff Detail
Diff Detail
- Repository
- rOPS Nasqueron Operations
- Lint
Lint Passed - Unit
No Test Coverage - Branch
- credentials-migrate
- Build Status
Buildable 5232 Build 5513: arc lint + arc unit
Event Timeline
Comment Actions
This change touches Wolfplex files. As such, administrative approval is needed from Wolfplex technical contact.
Comment Actions
The change is only technical from Vault perspective: secrets were stored in ops/secrets/<former Zemke-Rhyne name>,
and have now been migrated to new paths using a slash ("/") as separator instead of a dot (".").
For Wolfplex files, it's indeed now needed to use ops/secrets/nasqueron/etherpad/api to get Etherpad API key.
Credentials for Wolfplex are now all located in ops/secrets/wolfplex/.