Feed API/Oauth token to vcert run command

Venafi / vcert

Go client SDK and command line utility designed to simplify integrations by automating key generation and certificate enrollment using Venafi machine identity services.

https://support.venafi.com/hc/en-us/articles/217991528

Apache License 2.0

88 stars 64 forks source link

Feed API/Oauth token to vcert run command #434

Closed kjacque95 closed 5 months ago

kjacque95 commented 6 months ago

BUSINESS PROBLEM Currently the token has to persist in the playbook or be passed as an environment variable

PROPOSED SOLUTION Have the ability to feed the oauth token to vcert at run time.

CURRENT ALTERNATIVES none

VENAFI EXPERIENCE

BeardedPrincess commented 5 months ago

@kjacque95 using the environment variable is the approach for passing an access / refresh token at runtime.

export TPP_TOKEN=4321-4321-bcda-bcda-12341234
vcert run -f myPlaybook.yaml

inside the playbook refer to the variable as:

accessToken: '{{ Env "TPP_TOKEN" }}'