Select Git revision
gitlab-ci-sonar-vault.yml
-
semantic-release-bot authored
# [4.0.0](https://gitlab.com/to-be-continuous/sonar/compare/3.3.0...4.0.0) (2023-08-28) ### Features * **oidc:** OIDC authentication support now requires explicit configuration (see doc) ([a617e8e4](https://gitlab.com/to-be-continuous/sonar/commit/a617e8e48db080d489ac4824149150827d15f03f)) ### BREAKING CHANGES * **oidc:** OIDC authentication support now requires explicit configuration (see doc)
semantic-release-bot authored# [4.0.0](https://gitlab.com/to-be-continuous/sonar/compare/3.3.0...4.0.0) (2023-08-28) ### Features * **oidc:** OIDC authentication support now requires explicit configuration (see doc) ([a617e8e4](https://gitlab.com/to-be-continuous/sonar/commit/a617e8e48db080d489ac4824149150827d15f03f)) ### BREAKING CHANGES * **oidc:** OIDC authentication support now requires explicit configuration (see doc)
gitlab-ci-sonar-vault.yml 894 B
# =====================================================================================================================
# === Vault template variant
# =====================================================================================================================
variables:
# variabilized vault-secrets-provider image
TBC_VAULT_IMAGE: "$CI_REGISTRY/to-be-continuous/tools/vault-secrets-provider:master"
# variables have to be explicitly declared in the YAML to be exported to the service
VAULT_ROLE_ID: "$VAULT_ROLE_ID"
VAULT_SECRET_ID: "$VAULT_SECRET_ID"
VAULT_OIDC_AUD: "$CI_SERVER_URL"
sonar:
services:
- name: "$TBC_TRACKING_IMAGE"
command: ["--service", "sonar", "4.0.0" ]
- name: "$TBC_VAULT_IMAGE"
alias: "vault-secrets-provider"
variables:
VAULT_JWT_TOKEN: "$VAULT_JWT_TOKEN"
id_tokens:
VAULT_JWT_TOKEN:
aud: "$VAULT_OIDC_AUD"