Managing GitHub secrets using terraform

In this video we'll take a look at Managing GitHub secrets using terraform as well as federated identities from GitHub into Azure. You should only be storing secrets if you absolutely need to, in this demo although we are only accessing storage accounts the change from a storage connection string to Azure Federated Identity means that we can access any of resource the identity has access too using RBAC which is a much better overall approach.
📅 11 Aug 2022

YouTube Video

In this video we'll take a look at Managing GitHub secrets using terraform as well as federated identities from GitHub into Azure.

You should only be storing secrets if you absolutely need to, in this demo although we are only accessing storage accounts the change from a storage connection string to Azure Federated Identity means that we can access any of resource the identity has access too using RBAC which is a much better overall approach.

Posted originally on 11 Aug 2022 on the @gordonbeeming YouTube channel.

Make sure you take a look in the description of the video on YouTube for shared links.

 

All code from this demo can be found on GitHub at https://github.com/GordonBeeming-org/Managing-GitHub-secrets-using-terraform.

Specific snippets created in the demo can also be found below for convenience

main.tf




        

variables.tf




        

gh-repo.tf




        

publish.yml (1st)




        

publish.yml (2nd)




        

storage.tf