Comments (6)
Any update on this team
from aws-secrets-manager-credentials-provider-plugin.
Tired with standalone installation too, its same issue fails with below error
Could not list credentials in Secrets Manager: message=[1 validation error detected: Value '[newrelic-api-key, newrelic-api-key1, newrelic-api-key2, newreli ...' at 'filters.1.member.values' failed to satisfy constraint: Member must have length less than or equal to 10 (Service: AWSSecretsManager; Status Code: 400; Error Code: ValidationException; Request ID: a6f2f509-fd82-4881-923a-a29e05dd3784; Proxy: null)]
Jenkins Version - Jenkins 2.346.3
Aws secret manager plugin - Tried with both 1.1.0 to 1.2.0
from aws-secrets-manager-credentials-provider-plugin.
The first thing to try would be replicating the list-secrets call in the AWS CLI, with the same parameters. That way you'll know if what you are seeing is an AWS limitation, or something in Jenkins.
I imagine this would be along the lines of
aws secretsmanager list-secrets --filters "Key=name,Values=<secret1>,<secret2>..."
Replace with your actual secret names of course.
from aws-secrets-manager-credentials-provider-plugin.
executed aws secretsmanager list-secrets --filters "Key=name,Values=<secret1>,<secret2>..."
with actual secret names, it failed with below error
An error occurred (ValidationException) when calling the ListSecrets operation: 1 validation error detected: Value '[newrelic-api-key, newrelic-api-key1, newrelic-api-key2, newreli ...' at 'filters.1.member.values' failed to satisfy constraint: Member must have length less than or equal to 10
from aws-secrets-manager-credentials-provider-plugin.
Right, in that case what you are seeing is a limitation in AWS itself. You won't be able to pass this many filter criteria to it, no matter which tool you use.
If you have a group of secrets that you want to show up in Jenkins, I would recommend creating a common AWS tag on those secrets. That way you'll be able to set the tag key/value as your filter criteria in Jenkins, and only the secrets with that tag will show up in Jenkins.
Please also note that secret filters/tags are purely a client-side option to improve the user (administrator?) experience in Jenkins. They do not provide any kind of security.
from aws-secrets-manager-credentials-provider-plugin.
Thank you so much will explore this option
from aws-secrets-manager-credentials-provider-plugin.
Related Issues (20)
- Can we pass googleoauth2 parameters in the helm chart with this plugin HOT 2
- Support AWS credentials HOT 2
- Icons don't display for "SSH User Private Key" & "Certificate" credentials types HOT 4
- Support for browerstack credential kind HOT 2
- Cross-account role access doesn't appear to work HOT 3
- Make this plugin configurable at folder level, not just centrally HOT 7
- AWS EKS 1.24 client is not respecting jenkins-master pod role HOT 5
- casc config reports improper filter value HOT 5
- reading json secrets HOT 2
- Create support for username-password passing without tag value limitations HOT 3
- Support the popular AmazonWebServicesCredentialsBinding credential types HOT 2
- SSH Keys not working with sshagent
- Ability to set STS endpoint
- The plugin does not pick up Jenkins' proxy settings HOT 4
- Content goes to 404 in Jenkins's documentation
- File Credentials stored in AWS cannot be validated HOT 3
- Don't remove credentials during temporary issues HOT 3
- Github app credentials integrations HOT 1
- "Could not list credentials in Secrets Manager" HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from aws-secrets-manager-credentials-provider-plugin.