Content clandestine access does not fully define how to set up storage
I am following the instructions here on how to set up a repository for sharing secrets.
Ultimately, I just want to get my bot credits for git resources.
I am deploying via docker build and have successfully added a repository server to build.
- where can i run commands
concourse atc
?atc
is not a valid binary commandconcourse
found inconcourse/concourse
images - can it completely get away from the need for this separate secret service if I just put some sheets in a file somewhere on my inbox? if not, can i run it over http vs https? its all in a secure environment already
thank!
source to share
Sorry! It looks like our documentation was wrong.
Everybody has to say
concourse web --vault-url ...
If you are working via docker-compose you should set the appropriate environment variables in your web instance eg. $CONCOURSE_VAULT_URL
or $CONCOURSE_VAULT_CLIENT_TOKEN
.
If you ever need to know what parameters can be configured, you can always run docker run concourse/concourse web --help
or docker run concourse/concourse worker --help
.
source to share
I created a template where we preconfigured store support at https://github.com/EugenMayer/concourseci-server-boilerplate , the most interesting part on how to set up store support is the configurator part
https://github.com/EugenMayer/docker-image-concourse-configurator/blob/master/bin/vault_init.sh
and since client-cert auth is used, also https://github.com/EugenMayer/docker-image-concourse-configurator/blob/master/bin/vault_client_cert.sh
You see correct examples on how to store values ββat https://github.com/EugenMayer/concourseci-server-boilerplate/blob/master/run_vault_test.sh
I know I am linking external sources here, but this thread is a way of broadly answering inline. I posted this as a link for anyone looking for more examples - since I haven't found any for myself
source to share