Hello, My company has a need to load CI secrets (e.g. API tokens and machine user passwords) from AWS Secrets Manager. We used to do this with hacky Shell scripts but wanted something better. We looked around for a Jenkins Credentials Provider plugin to do this, but we could not find one, so we’ve written one.
We’re happy to share this with the community under an MIT license (or something similar) - indeed this would be the easiest route for other teams across our company to adopt it in their Jenkins installations. We’re interested in feedback for where this proposed plugin could or should live, and - if it sounds relevant to your interests - what kind of features you’d like to see it support. Its current features are: - Read-only view of Secrets Manager Secrets. - Credential metadata caching (duration: 5 minutes). - Jenkins Configuration as Code support. Its optional configuration parameters are: - Filter AWS Secrets by tag - Customise AWS endpoint configuration (useful for local testing) We’re initially thinking it should be a Github repo under the ‘jenkinsci’ or ‘aws’ organisations, with our own engineers added to that repo as external collaborators. (These would seem to be the most natural homes for the plugin.) But we’re open to other suggestions :) Regards, Chris Kilding -- You received this message because you are subscribed to the Google Groups "Jenkins Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-dev/d0de3f9e-0dc1-4bc0-8041-a0c767322771%40www.fastmail.com. For more options, visit https://groups.google.com/d/optout.
