nice-application-79035
04/02/2024, 6:32 AM--secrets-provider
but the pulumi task always show the following error error: getting stack configuration: get stack secrets manager: passphrase must be set with PULUMI_CONFIG_PASSPHRASE or PULUMI_CONFIG_PASSPHRASE_FILE environment variables
. Below is my pulumi task in the ADO pipeline. Could you please tell me why do we need to set ``PULUMI_CONFIG_PASSPHRASE` in the environment variable when I am trying to use Azure key vault as the secret provider?
task: Pulumi@1
displayName: 'Pulumi Up (Namespace: ${{ parameters.namespace }})'
retryCountOnTaskFailure: 3
inputs:
cwd: '$(Build.SourcesDirectory)/cicd/iac/'
command: 'up'
args: '--yes --config-file=$(CONFIG_FILE_PATH) --secrets-provider=$(KEY_VAULT_PULUMI_KEY)'
loginArgs: '--cloud-url <azblob://pulumistacks?storage_account=$(STORAGE_ACCOUNT_NAME)>'
stack: 'organization/test/virtual-${{ parameters.namespace }}'
azureSubscription: $(PULUMI_STACK_SUBSCRIPTION)
createStack: true
env:
AZURE_STORAGE_ACCOUNT: $(STORAGE_ACCOUNT_NAME)
AZURE_STORAGE_KEY: $(STORAGE_ACCOUNT_KEY)
AZURE_KEYVAULT_AUTH_VIA_CLI: "true"
fast-sandwich-30809
04/02/2024, 1:56 PMfast-sandwich-30809
04/02/2024, 1:58 PMfast-sandwich-30809
04/02/2024, 1:58 PMnice-application-79035
04/02/2024, 5:14 PM