HomeDevCentral

Map the Phabricator credentials ID

Authored by dereckson on Sep 12 2018, 09:15.

Description

Map the Phabricator credentials ID

Summary:
Currently, Phabricator credentials are described by number.
This solution isn't the best for maintenance and doesn't allow secrets
replacement easily (what if we want to hunt the number 2 in the repo?).

This change provides a new pillar entry, zr_credentials, to map the IDs
to dictionary keys.

The Zemke-Rhyne execution module is updated to support keys expressions
(with . or : as separatator) in addition to numeric values.

The key dotted format has been selected to be stable, as the key would
also be a valid expression to fetch the secret in other stores, like Vault.

Ref T1425

Test Plan: salt equatower zr.get_username nasqueron.cachet.mysql

Reviewers: dereckson

Reviewed By: dereckson

Maniphest Tasks: T1425

Differential Revision: http://devcentral.nasqueron.org/D1738

Details

Committed
derecksonSep 12 2018, 10:00
Pushed
derecksonSep 12 2018, 10:00
Reviewer
dereckson
Differential Revision
D1738: Map the Phabricator credentials ID
Parents
rOPS274e9d402564: Improve style
Branches
Unknown
Tags
Unknown
Tasks
T1425: Provision secrets through Salt