drone / Drone Vault
Licence: other
Drone plugin for integrating with the Vault secrets manager
Stars: ✭ 36
Programming Languages
go
31211 projects - #10 most used programming language
Projects that are alternatives of or similar to Drone Vault
Vault Secrets Operator
Create Kubernetes secrets from Vault for a secure GitOps based workflow.
Stars: ✭ 298 (+727.78%)
Mutual labels: vault, secrets
Ccmenu
CCMenu is a Mac application to monitor continuous integration servers.
Stars: ✭ 306 (+750%)
Mutual labels: ci, ci-cd
Daytona
a vault client, but for containers and servers.
Stars: ✭ 255 (+608.33%)
Mutual labels: vault, secrets
Drone
Drone is a Container-Native, Continuous Delivery Platform
Stars: ✭ 24,287 (+67363.89%)
Mutual labels: ci, ci-cd
Azure Key Vault To Kubernetes
Azure Key Vault to Kubernetes (akv2k8s for short) makes it simple and secure to use Azure Key Vault secrets, keys and certificates in Kubernetes.
Stars: ✭ 253 (+602.78%)
Mutual labels: vault, secrets
jt tools
Ruby on Rails Continuous Deployment Ecosystem to maintain Healthy Stable Development
Stars: ✭ 13 (-63.89%)
Mutual labels: ci, ci-cd
Vault
A tool for secrets management, encryption as a service, and privileged access management
Stars: ✭ 22,383 (+62075%)
Mutual labels: vault, secrets
Pipeline
Pipeline is a package to build multi-staged concurrent workflows with a centralized logging output.
Stars: ✭ 433 (+1102.78%)
Mutual labels: ci, ci-cd
Android-CICD
This repo demonstrates how to work on CI/CD for Mobile Apps 📱 using Github Actions 💊 + Firebase Distribution 🎉
Stars: ✭ 37 (+2.78%)
Mutual labels: ci, ci-cd
Concourse
Concourse is a container-based continuous thing-doer written in Go.
Stars: ✭ 6,070 (+16761.11%)
Mutual labels: ci, ci-cd
secrets-proxy
🔑 A secure proxy service for managing OneOps secrets.
Stars: ✭ 12 (-66.67%)
Mutual labels: vault, secrets
Chn Eolinker Ams Lite 4.0 For Php
中国最大的在线API管理平台EOLINKER 旗下API管理系统开源精简版,适合个人以及微型团队使用。
Stars: ✭ 869 (+2313.89%)
Mutual labels: ci, ci-cd
check-in
Checks your test results metadata into github, commit-bound. Acts as a bot. You'll need a GitHub App to use it.
Stars: ✭ 18 (-50%)
Mutual labels: ci, ci-cd
Sup3rs3cretmes5age
Simple to use, simple to deploy, one time self destruct messaging service, with hashicorp vault as a backend
Stars: ✭ 313 (+769.44%)
Mutual labels: vault, secrets
polymerase
A tool for populating templates with environment variables and Vault values
Stars: ✭ 84 (+133.33%)
Mutual labels: vault, secrets
k8s-vault-webhook
A k8s vault webhook is a Kubernetes webhook that can inject secrets into Kubernetes resources by connecting to multiple secret managers
Stars: ✭ 107 (+197.22%)
Mutual labels: vault, secrets
Vault Guides
Example usage of HashiCorp Vault secrets management
Stars: ✭ 636 (+1666.67%)
Mutual labels: vault, secrets
drone-vault-extension
A secret extension that provides optional support for sourcing secrets from Vault. Please note this project requires Drone server version 1.3 or higher.
Installation
Create a shared secret:
$ openssl rand -hex 16
bea26a2221fd8090ea38720fc445eca6
Download and run the plugin:
$ docker run -d \
--publish=3000:3000 \
--env=DRONE_DEBUG=true \
--env=DRONE_SECRET=bea26a2221fd8090ea38720fc445eca6 \
--env=VAULT_ADDR=... \
--env=VAULT_TOKEN=... \
--restart=always \
--name=drone-vault drone/vault
Using approle authentication:
$ docker run -d \
--publish=3000:3000 \
--env=DRONE_DEBUG=true \
--env=DRONE_SECRET=bea26a2221fd8090ea38720fc445eca6 \
--env=VAULT_ADDR=... \
--env=VAULT_AUTH_TYPE=approle \
--env=VAULT_TOKEN_TTL=72h
--env=VAULT_TOKEN_RENEWAL=24h
--env=VAULT_APPROLE_ID=... \
--env=VAULT_APPROLE_SECRET=... \
--restart=always \
--name=drone-vault drone/vault
Update your runner configuration to include the plugin address and the shared secret.
DRONE_SECRET_PLUGIN_ENDPOINT=http://1.2.3.4:3000
DRONE_SECRET_PLUGIN_TOKEN=bea26a2221fd8090ea38720fc445eca6
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].