Cache Vault secrets using the plugin

jenkinsci / hashicorp-vault-plugin

Jenkins plugin to populate environment variables from secrets stored in HashiCorp's Vault.

https://plugins.jenkins.io/hashicorp-vault-plugin/

MIT License

217 stars 143 forks source link

Cache Vault secrets using the plugin #295

Open vinamrahw opened 1 year ago

vinamrahw commented 1 year ago

What feature do you want to see added?

Currently there is no caching of vault secrets in jenkins plugin which is causing thousands of read requests to Vault for the same secret. Caching will heavily reduce the read requests from jenkins to Vault

Upstream changes

No response

ebuildy commented 1 year ago

never cache a secret .......

dorbeus commented 3 months ago

In my Jenkins instance i have around 100 requests per second to vault. It has a large number of jobs that work against a subversion server, and is probably due to each job pulling for repo changes. So I would also need some form of caching, I know one should not cache secretes but this becomes insane without it.