conda-forge infrastructure

This repository holds common configurations and settings for key pieces of the conda-forge infrastructure.

Note

This is not a forum for end-user questions

Sync-secrets-azure

The sync-secrets-azure pulumi project syncs secrets from the conda-forge 1password vault to Azure

Running locally

Install the 1password cli
Export environment variables:
- AZDO_PERSONAL_ACCESS_TOKEN (api token for AZURE)
- AZDO_ORG_SERVICE_URL (org service url for AZURE)
- OP_SERVICE_ACCOUNT_TOKEN (token for 1password service account)
Setup pulumi (only needs to be run once)

$ pulumi install
$ pulumi plugin install resource onepassword --server github://api.github.com/1Password/pulumi-onepassword

Apply changes

$ pulumi up

Try it out with GHA

.github/workflows/push-1password-secrets-to-azure

Try it out by:

create and push a branch name following the pattern "azure-push-secrets-*" OR manually run the 1Password-to-Azure workflow
observe the run in github action that populates secrets

Sync-secrets-gha

The sync-secrets-gha pulumi project syncs secrets from the conda-forge 1password vault to Github

Running locally

Install the 1password cli
Export environment variables:
- GITHUB_TOKEN (permissions to repo and admin:org)
- OP_SERVICE_ACCOUNT_TOKEN (token for 1password service account)
Setup pulumi (only needs to be run once)

$ pulumi install
$ pulumi plugin install resource onepassword --server github://api.github.com/1Password/pulumi-onepassword

Apply changes

$ pulumi up

Try it out with GHA

.github/workflows/push-1password-secrets-to-gha

Try it out by:

create and push a branch name following the pattern "gha-push-secrets-*" OR manually run the 1Password-to-GHA workflow
observe the run in github action that populates secrets

Sync-secrets-heroku

The sync-secrets-heroku pulumi project syncs secrets from the conda-forge 1password vault to Heroku

Running locally

Install the 1password cli
Export environment variables:
- HEROKU_API_KEY (api token for heroku)
- OP_SERVICE_ACCOUNT_TOKEN (token for 1password service account)
Setup pulumi (only needs to be run once)

$ pulumi install
$ pulumi plugin install resource onepassword --server github://api.github.com/1Password/pulumi-onepassword

Apply changes

$ pulumi up

Try it out with GHA

.github/workflows/push-1password-secrets-to-heroku

Try it out by:

create and push a branch named with the pattern "heroku-push-secrets-*" OR manually run the 1Password-to-Heroku workflow
observe the run in github action that populates secrets

Name		Name	Last commit message	Last commit date
Latest commit History 64 Commits
.github		.github
sync-secrets-azure		sync-secrets-azure
sync-secrets-gha		sync-secrets-gha
sync-secrets-heroku		sync-secrets-heroku
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

conda-forge infrastructure

Sync-secrets-azure

Running locally

Try it out with GHA

Sync-secrets-gha

Running locally

Try it out with GHA

Sync-secrets-heroku

Running locally

Try it out with GHA

Sponsored by Pulumi

About

Uh oh!

Releases

Sponsor this project

Uh oh!

Packages

Uh oh!

Uh oh!

Contributors

Uh oh!

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

conda-forge infrastructure

Sync-secrets-azure

Running locally

Try it out with GHA

Sync-secrets-gha

Running locally

Try it out with GHA

Sync-secrets-heroku

Running locally

Try it out with GHA

Sponsored by Pulumi

About

Resources

License

Contributing

Uh oh!

Stars

Watchers

Forks

Releases

Sponsor this project

Uh oh!

Packages 0

Uh oh!

Uh oh!

Contributors

Uh oh!

Packages