-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathsecrets.op.env
More file actions
97 lines (79 loc) · 5.48 KB
/
secrets.op.env
File metadata and controls
97 lines (79 loc) · 5.48 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
# shellcheck shell=sh
# This file is part of a workflow that uses the 1Password CLI (https://developer.1password.com/docs/cli/)
# and Terraform Environment Variables (https://developer.hashicorp.com/terraform/cli/config/environment-variables#tf_var_name)
# to safely inject Secret Zero-type data into Terraform, by polling a project-specific 1Password Vault.
#
# For more information, see the README.md file.
# Auth0-specific configuration
export TF_VAR_aws_directory_admin_username="op://Shared/aws/directory/username"
export TF_VAR_aws_directory_admin_password="op://Shared/aws/directory/password"
# Auth0-specific configuration
export TF_VAR_auth0_domain="op://Shared/auth0/api/domain"
export TF_VAR_auth0_client_id="op://Shared/auth0/api/client-id"
export TF_VAR_auth0_client_secret="op://Shared/auth0/api/client-secret"
# Datadog-specific configuration
export TF_VAR_datadog_api_key="op://Shared/datadog/api/api-key"
export TF_VAR_datadog_api_url="op://Shared/datadog/api/api-url"
export TF_VAR_datadog_api_zone="op://Shared/datadog/api/api-zone"
export TF_VAR_datadog_app_key="op://Shared/datadog/api/app-key"
# Discord-specific configuration
export TF_VAR_discord_token="op://Socials/discord/service-account-terraform/token"
# Docker-specific configuration
#export TF_VAR_docker_username="op://Shared/docker/username"
export TF_VAR_docker_read_write_delete_token="op://Shared/docker/access-tokens/read-write-delete"
export TF_VAR_docker_read_write_token="op://Shared/docker/access-tokens/read-write"
export TF_VAR_docker_read_token="op://Shared/docker/access-tokens/read"
# Gandi-specific configuration
export TF_VAR_gandi_api_key="op://Shared/gandi/misc/api-key"
# GitGuardian-specific configuration
#export TF_VAR_gitguardian_user="op://Shared/gitguardian/service-account/user-name"
export TF_VAR_gitguardian_token="op://Shared/gitguardian/service-account/token"
# GitHub-specific configuration
# see https://registry.terraform.io/providers/integrations/github/latest/docs#oauth--personal-access-token
#export TF_VAR_github_owner="op://Shared/github/misc/organization-name"
export TF_VAR_github_token="op://Shared/github/tokens/organization"
# Google-specific configuration
# see https://registry.terraform.io/providers/hashicorp/google/latest/docs/guides/provider_reference#authentication-configuration
export TF_VAR_google_project_id="op://Shared/google/api/project-id"
# HashiCorp Cloud Platform Boundary Cluster-specific configuration
# see https://registry.terraform.io/providers/hashicorp/hcp/latest/docs#schema
export TF_VAR_hcp_boundary_admin_username="op://Shared/hashicorp-cloud-platform/boundary-cluster/username"
export TF_VAR_hcp_boundary_admin_password="op://Shared/hashicorp-cloud-platform/boundary-cluster/password"
# HashiCorp Cloud Platform-specific configuration for "Contributor" (read/write) and Viewer (read-only) accounts
# see https://registry.terraform.io/providers/hashicorp/hcp/latest/docs#schema
export TF_VAR_hcp_viewer_id="op://Shared/hashicorp-cloud-platform/viewer/id"
export TF_VAR_hcp_viewer_secret="op://Shared/hashicorp-cloud-platform/viewer/secret"
export TF_VAR_hcp_contributor_id="op://Shared/hashicorp-cloud-platform/contributor/id"
export TF_VAR_hcp_contributor_secret="op://Shared/hashicorp-cloud-platform/contributor/secret"
# Infracost-specific configuration
# see https://www.infracost.io/docs/integrations/terraform_cloud_enterprise/
export TF_VAR_infracost_runtask_hmac_key="op://Shared/infracost/terraform-cloud-integration/hmac-key"
export TF_VAR_infracost_runtask_url="op://Shared/infracost/terraform-cloud-integration/webhook-url"
export TF_VAR_infracost_org="op://Shared/infracost/api/organization-id"
# Mondoo-specific configuration
# see https://console.mondoo.com/space/overview
export TF_VAR_mondoo_space_id="op://Shared/mondoo/integration-packer-templates/space-id"
export TF_VAR_mondoo_credential="op://Shared/mondoo/integration-packer-templates/credential"
# Okta-specific configuration
# see https://developer.okta.com/docs/guides/create-an-api-token/main/
export TF_VAR_okta_org_name="op://Shared/okta/api/org"
export TF_VAR_okta_api_token="op://Shared/okta/api/token"
export TF_VAR_okta_social_login_github_client_id="op://Shared/okta/social-login-github/client-id"
export TF_VAR_okta_social_login_github_client_secret="op://Shared/okta/social-login-github/client-secret"
# Pagerduty-specific configuration
# see https://support.pagerduty.com/docs/api-access-keys
export TF_VAR_pagerduty_key_readwrite="op://Shared/pagerduty/api/read-write-key"
export TF_VAR_pagerduty_key_read="op://Shared/pagerduty/api/read-key"
export TF_VAR_pagerduty_subdomain="op://Shared/pagerduty/misc/subdomain"
#export TF_VAR_pagerduty_organization="op://Shared/pagerduty/misc/organization"
# Snyk-specific configuration
# see https://docs.snyk.io/integrations/ci-cd-integrations/integrating-snyk-with-terraform-cloud/set-up-the-terraform-cloud-integration-for-iac
export TF_VAR_snyk_runtask_hmac_key="op://Shared/snyk/terraform-cloud-integration/hmac-key"
export TF_VAR_snyk_runtask_url="op://Shared/snyk/terraform-cloud-integration/webhook-url"
#export TF_VAR_snyk_org="op://Shared/snyk/api/organization-name"
export TF_VAR_snyk_token="op://Shared/snyk/api/auth-token"
# HCP Terraform-specific configuration
# see https://registry.terraform.io/providers/hashicorp/tfe/latest/
export TF_VAR_tfe_organization_email="op://Shared/terraform-cloud/misc/organization-email"
#export TF_VAR_tfe_organization_name="op://Shared/terraform-cloud/misc/organization-name"
export TF_VAR_tfe_oauth_client_id="op://Shared/terraform-cloud/misc/oauth-client-id"