Help
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Copilot Lvl 3
Message 11 of 19

Re: Secrets on Team and Organization level

this would also be good for github actions, if they ever opt to make anything team/org level with that.

Highlighted
Copilot Lvl 2
Message 12 of 19

Re: Secrets on Team and Organization level


@antonb-via wrote:

Hi,

I think it's a good idea to be able to define Secrets not only on repo level, but also on Team and Organization level to avoid duplication between repositories. 


 

Highlighted
Copilot Lvl 2
Message 13 of 19

Re: Secrets on Team and Organization level

Any updates on this or a Roadmap of to be implmented GitHub Action features? This one feature is make or break for us, no way are we managing hundred of secrets by hand.

Highlighted
Pilot Lvl 1
Message 14 of 19

Re: Secrets on Team and Organization level

The Actions API has been made available as a beta:

https://developer.github.com/changes/2020-01-28-actions-api/

 

With that, we should be able to write scripts that can roll out secrets to a bunch of repositories at once.

 

Highlighted
Copilot Lvl 3
Message 15 of 19

Re: Secrets on Team and Organization level

I would add a different use case for the same functionality.

 

We would like to be able to set Secrets at a Team level to be able to protect the usage of those secrets. When running an action for deployment to Production, we could have our ProdOps Team be the only ones to successfully run the production deployment workflow. We would like to protect our secrets through Team ownership.

Highlighted
Pilot Lvl 1
Message 16 of 19

Re: Secrets on Team and Organization level

We have written a tool to help with this: https://github.com/webfactory/secret-spreader

 

It is based on the brand-new (beta) GitHub API for Actions. See the README over at the repo for full details.

 

Feedback is very much appreciated!

Highlighted
Ground Controller Lvl 1
Message 17 of 19

Re: Secrets on Team and Organization level

We really need this.

We are having multiple github repositories with the same SECRETS, a key rotation will be a mess for us. 

Any news on this??

Highlighted
Pilot Lvl 1
Message 18 of 19

Re: Secrets on Team and Organization level

Highlighted
Pilot Lvl 1
Message 19 of 19

Re: Secrets on Team and Organization level

Well, I have well over 100 repositories, and simply cannot afford to create / update their secrets whenever I want to rotate keys.

 

Therefore, I created SecretHub - a CLI (written in Ruby) that lets you manage multiple secrets in multiple repositories with ease. If anyone can't wait for official organization secrets from GitHub, feel free to use it.

 

$ secrethub
GitHub Secret Manager

Commands:
  list    Show secrets for a repository
  save    Create or update a secret in a repository
  delete  Delete a secret from a repository
  bulk    Update or delete multiple secrets from multiple repositories