HomeDevCentral
Diffusion Nasqueron Operations 4d55fdc16e13

Map the Phabricator credentials ID
4d55fdc16e13
Actions

Description

Map the Phabricator credentials ID

Summary:
Currently, Phabricator credentials are described by number.
This solution isn't the best for maintenance and doesn't allow secrets
replacement easily (what if we want to hunt the number 2 in the repo?).

This change provides a new pillar entry, zr_credentials, to map the IDs
to dictionary keys.

The Zemke-Rhyne execution module is updated to support keys expressions
(with . or : as separatator) in addition to numeric values.

The key dotted format has been selected to be stable, as the key would
also be a valid expression to fetch the secret in other stores, like Vault.

Ref T1425

Test Plan: salt equatower zr.get_username nasqueron.cachet.mysql

Reviewers: dereckson

Reviewed By: dereckson

Maniphest Tasks: T1425

Differential Revision: http://devcentral.nasqueron.org/D1738

Details

Provenance
derecksonAuthored on Sep 12 2018, 09:15
derecksonPushed on Sep 12 2018, 10:00
Reviewer
dereckson
Differential Revision
D1738: Map the Phabricator credentials ID
Parents
rOPS274e9d402564: Improve style
Branches
Unknown
Tags
Unknown
Tasks
T1425: Provision secrets through Salt

Changes (5)

PathSize
_modules/
pillar/
credentials/
hotfixes/
zr.sls
roles.sls
paas/

rOPS4d55fdc16e13

View Options

_modules/zr.py

Loading...
View Options

pillar/credentials/zr.sls

Loading...
View Options

pillar/paas/docker.sls

Loading...
View Options

pillar/top.sls

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator