Open Bug 1628421 Opened 5 years ago Updated 4 years ago

[image-generation] monopacker secrets should be configured per builder

Tracking

(Not tracked)

Status:

NEW

People

(Reporter: miles, Unassigned)

References

(Blocks 2 open bugs)

Details

Miles Crabill [:miles]

Reporter

Description

•

5 years ago

Monopacker currently takes secrets via a (decrypted) secrets file specified on the command line. This should change to make it harder to mix up secrets between environments - secrets should be mapped 1:1 to builders, monopacker should to some extent integrate with secrets tooling.

To start, a builder should be able to be configured with its secrets location, i.e. a path on disk relative to a secrets store, and a command to run to decrypt the secrets in that location.

Miles Crabill [:miles]

Reporter

Updated

•

5 years ago

Blocks: 1628422

Miles Crabill [:miles]

Reporter

Updated

•

5 years ago

Blocks: 1573991

Dustin J. Mitchell [:dustin] (he/him)

Updated

•

4 years ago

Assignee: miles → nobody

You need to log in before you can comment on or make changes to this bug.

Bugzilla

[image-generation] monopacker secrets should be configured per builder

Categories

(Taskcluster :: Workers, enhancement)

Tracking

(Not tracked)

People

(Reporter: miles, Unassigned)

References

(Blocks 2 open bugs)

Details

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Updated