Concourse
Replies: 1 comment 3 replies
-
|
That's a reasonable ask. Would have the setup code check if the value passed into the existing fields is a file or not (use That said, not something I'll work on, but I'd be happy to merge a PR that does this. |
Beta Was this translation helpful? Give feedback.
-
|
This might actually be a thing to update in dex: https://github.com/concourse/dex |
Beta Was this translation helpful? Give feedback.
-
|
I don't know enough Elm otherwise I would write a PR for this. Maybe I'll write it later. Currently my solution is to have encrypted environment files. |
Beta Was this translation helpful? Give feedback.
-
|
No Elm! Elm is just the frontend, everything else is in Go. What're you asking about is all cluster configuration stuff, which is all handled by Go code. Went looking again and I think changes would need to happen in this file: https://github.com/concourse/concourse/blob/master/skymarshal/skycmd/oidc_flags.go |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Would it be possible to allow authentication secrets to pass by file? For example, currently
oidc-client-secretcan only enter concourse via a flag or an environment variable. In some secret provisioning schemes, it is best to have concourse read this secret from a file.The session signing key and TSA system already read keys from files.
Beta Was this translation helpful? Give feedback.
All reactions