Pattern for Dev -> Prod Secret Managemnt

Omzig · November 7, 2022, 4:33pm

Product: PowerShell Universal
Version: 3.4.6

Development:
Git: Two-Way
$env:psuEnv = "dev"

Production: 
Git: One-Way
$env:psuEnv = "prod"

If i add a secret that can only be used in Dev, and i add a secret that can only be used in Prod, is there a solution to reference the correct secret depending on the machine that it is being run from.

It would make sense maybe if we had a cmdlet that did something like this:

$myEnvParm = Get-PSUVariable -Name "$($env:psuEnv)SQLServer"
$myEnvCred = Get-PSUSecret -Name "$($env:psuEnv)SQLCred"

Maybe there is already provisions made for deployment environments like Dev/Stage/Prod?

andwells · November 7, 2022, 7:24pm

@Omzig That would depend on your existing set up. Are you using PowerShell Universal’s built-in vault? If you are, a solution I use is to create a variable in PSU in each environment, and set the variable name the same in each environment, but different values for each environment. I just call the name of the variable from my script and the script doesn’t have to know which environment it’s running in.

Topic		Replies	Views
OneWay Sync with Secrets Management PowerShell Universal	2	449	February 25, 2021
Separate 'Passed Variables' for Simple and Secret Variables for PSUEnvironments PowerShell Universal	1	207	February 28, 2023
Secret Variables can't be saved in PSU PowerShell Universal	0	12	December 11, 2024
Handling Variables between Multiple PSU Environments PowerShell Universal	0	230	September 20, 2021
Is it possible to use the same Git repository across multiple environments with Git sync? PowerShell Universal	4	376	August 16, 2023

Pattern for Dev -> Prod Secret Managemnt

Related topics