DevOps Master Class - Part 5 - Secrets
In this part we dive into Secrets in our provisioned environment and our pipelines/workflows. Demos focused around Azure and GitHub.
Whiteboard and pipelines in the repo.
YouTube Playlist for the whole course - • DevOps Master Class
GitHub Repo - https://github.com/johnthebrit/DevOpsMC
Secrets Class Links:
GitHub Code Security - https://docs.github.com/en/code-security
Secret Scanning - https://docs.github.com/en/code-secur...
Azure Managed Identities - https://docs.microsoft.com/en-us/azur...
GitHub Secrets - https://docs.github.com/en/actions/re...
GitHub Action Azure Login - https://github.com/Azure/login
GitHub Workflow Authentication - https://docs.github.com/en/actions/re...
Index:
00:00 Introduction
01:05 The need for secrets
03:25 NEVER PUT SECRETS IN CODE
04:11 Secret scanning
06:30 Where to put secrets
08:10 Removing the need for secrets with infrastructure
16:00 Using vaults
20:20 Demo of managed identity and vaults
25:39 Thoughts if NEED an initial secret
27:40 Secrets in pipelines and workflows
37:50 Vault access from a workflow
46:24 Workflow auth to repo
48:37 Summary
