vault-action icon indicating copy to clipboard operation
vault-action copied to clipboard

Published 20 hours ago verified publisher icon hashicorp

Import secrets matching regex/glob pattern

Open rafiksargsyan opened this issue 2 years ago • 1 comments

Is your feature request related to a problem? Please describe. When there are many secrets one has to add them one by one, which is not only inconvenient but also pollutes the GitHub workflow files.

Describe the solution you'd like Allow importing secrets using regex/glob pattern. For example to specify secrets for the dev environment one could import secrets using the "DEV_*" pattern.

rafiksargsyan avatar Jun 20 '22 05:06 rafiksargsyan

Hi @rafiksargsyan - I want to confirm that you're asking for something like the following which builds on wildcard multiple secret support at the key-value level:

with:
    secrets: |
        secret/data/ci/aws DEV_* | MYAPP_ ;

This seems like a reasonable request if that's the case. If you're asking to support many secrets at the Vault KV path level (for example, secret/data/ci/*), then I don't think it's something we can do with Vault today.

austingebauer avatar Jan 02 '24 19:01 austingebauer