Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

common automatic update #390

Merged
merged 12 commits into from
Jun 29, 2024
Merged

common automatic update #390

merged 12 commits into from
Jun 29, 2024

Conversation

mbaldessari
Copy link
Contributor

  • Properly quote vault kv command
  • ACM chart version 0.0.2
  • golang-external-secrets chart version 0.0.4
  • hashicorp-vault chart version 0.0.2
  • Implement multi-source
  • Add tests for proper multisource support on spokes
  • Update tests after upgrading common
  • Fix linting issues in python test code

mbaldessari added 12 commits June 18, 2024 10:14
@mbaldessari
Properly quote vault kv command
28b2d39 
When using a password with a dollar, the oc exec commands run inside the
vault are not properly escaped, casing the dollar signed to be
interpreted by the shell inside the vault pod.

So a password like 'Y$yxn54&qXAxpUd2*yGH' will become 'Y&qXAxpUd2*yGH'
in the vault.

This is because the command that is being run ends up being:

    oc exec -n vault vault-0 -i -- sh -c "vault kv patch -mount=secret global/mysecret dollar=Y$yxn54&qXAxpUd2*yGH"

The `$yxn54` will be interpreted by the shell inside vault.

Let's fix this by running a properly escaped command:

    oc exec -n vault vault-0 -i -- sh -c "vault kv patch -mount=secret global/mysecret dollar='"'Y$yxn54&qXAxpUd2*yGH'"'"

Reported-By: Chris Butler <[email protected]>
@mbaldessari
Merge pull request #547 from mbaldessari/password-dollar
49f75ec 
Properly quote vault kv command
@mbaldessari
ACM chart version 0.0.2
de5647f
@mbaldessari
golang-external-secrets chart version 0.0.4
1fa5746
@mbaldessari
hashicorp-vault chart version 0.0.2
89b499b
@mbaldessari
Merge pull request #549 from mbaldessari/multi-source
ba674d9 
Update chart versions
@mbaldessari
Implement multi-source
89a4cad
@mbaldessari
Add tests for proper multisource support on spokes
2e78669
@mbaldessari
Merge pull request #550 from mbaldessari/multisource-new
b4574ed 
Multisource on spokes
@mbaldessari
Merge remote-tracking branch 'common-upstream/main' into common-autom…
0e6579d 
…atic-update
@mbaldessari
Update tests after upgrading common
56c9211
@mbaldessari
Fix linting issues in python test code
7a4b050
@mbaldessari mbaldessari merged commit 0a6d59e into validatedpatterns:main Jun 29, 2024
4 checks passed
bkumar73 pushed a commit to bkumar73/multicloud-gitops that referenced this pull request Jul 15, 2024
@mbaldessari
Merge pull request validatedpatterns#390 from mbaldessari/vault-0.26.1
43bc122 
Upgrade vault-helm to v0.26.1
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@mbaldessari