Managing GitHub secrets using terraform

11 Aug 2022

Azure GitHub IaC Security Terraform

YouTube Video

In this video we'll take a look at Managing GitHub secrets using terraform as well as federated identities from GitHub into Azure.

You should only be storing secrets if you absolutely need to, in this demo although we are only accessing storage accounts the change from a storage connection string to Azure Federated Identity means that we can access any of resource the identity has access too using RBAC which is a much better overall approach.

Posted originally on 11 Aug 2022 on Dev⭐Ops.

Make sure you take a look in the description of the video on YouTube for shared links.

 

 

All code from this demo can be found on GitHub at https://github.com/DevStarOps-org/Managing-GitHub-secrets-using-terraform.

Specific snippets created in the demo can also be found below for convenience

 

main.tf

 


 

variables.tf

 


 

gh-repo.tf

 


 

publish.yml (1st)

 


 

publish.yml (2nd)

 


 

storage.tf