Retrieve Secrets from Azure KeyVault
ActionsTags
(2)This GitHub action retrieves secrets from Azure Key Vaults and makes them available in your workflows.
- Generates a
.envfile within a job, adding all the secrets to the$GITHUB_ENVenvironment variable - Masks values with keys such as
SECRET,TOKEN,KEY,PASSin the GitHub output for security.
Clone the repository:
git clone https://github.com/Andrews-McMeel-Universal/get-envsTo integrate get-envs into your workflow, add a step to a workflow in your .github/workflows/ directory.
Set the environment to automatically find the Azure Key Vault with matching tags to the environment and repositoryName.
- uses: Andrews-McMeel-Universal/[email protected]
with:
azurecredentials: ${{ secrets.AZURE_CREDENTIALS }}
environment: developmentTo download secrets from a specific Key Vault, specify its name in the environmentKeyVault option.
- uses: Andrews-McMeel-Universal/[email protected]
with:
azurecredentials: ${{ secrets.AZURE_CREDENTIALS }}
environmentKeyVault: get-envs| Variable | Description | Required | Default |
|---|---|---|---|
azurecredentials |
Azure login credentials. Usually set to ${{ secrets.AZURE_CREDENTIALS }}. |
✔️ | N/A |
environmentKeyVault |
Name of the Azure Key Vault. If provided, the action will search for a matching Key Vault. | N/A |
|
repositoryName |
GitHub Repository Name. | ${{ github.event.repository.name }} |
|
environment |
Deployment environment. | N/A |
Retrieve Secrets from Azure KeyVault is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.
About
Tags
(2)Retrieve Secrets from Azure KeyVault is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.