Skip to content

UXPin/onvault

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
tests
tests
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
onvault.sh
onvault.sh
 
 

Repository files navigation

onvault

Temporarily expose AWS secrets as files. Dedicated for use in Dockerfiles / docker builds.

Example usage: /onvault.sh npm install Script will:

  1. Load secrets from AWS Secrets Manager,
  2. execute npm install,
  3. delete secrets.

Requirements

Script requires IAM privileges to access AWS Secrets Manager service.

Installation

  1. In Dockerfile add: 
    RUN curl -s -o /usr/local/bin/onvault https://raw.githubusercontent.com/UXPin/onvault/v2.0/onvault.sh && \
    chmod +x /usr/local/bin/onvault
  2. Modify Dockerfile steps that require secrets: 
    RUN /onvault.sh git clone ...

Cavetas

When executing commands with quoted arguments they must be double quoted, e.g.:

onvault.sh bash -c "'make; make install'"

Development

Running tests:

cd tests
make tests

About

Temporarily expose Vault secrets as files.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases 1

AWS Secret manager instead of vault Latest
Jun 9, 2020

Packages

No packages published

Contributors 2

  •  
  •  

Languages