STORY CANCELLED. We don't need to do it because we are using the ExternalSecrets operator
Success Criteria:
When I set a secret in Vault (with some well defined path within vault) to some value, and I open a terminal in the github runner pod, and i open a file called psr-secrets.yaml, then I should see the the decrypted value i set in vault
Constraints:
the ploigos-github-workflows and github-runners projects should not be Vault aware, i.e. they should not have any references to Vault
Notes:
We should probably use the vault functionality that allows us to annotate a deployment to get the vault injector to inject a file
STORY CANCELLED. We don't need to do it because we are using the ExternalSecrets operator
Success Criteria:
Constraints:
Notes:
Out of Scope: