plain-eye-975911/21/2019, 12:57 PM
Doesn't this pose a security challenge? In what other ways can this be done?
encryptionsalt: v1:xyz== config: my-project:secretConfig: secure: v1:DtxM
colossal-beach-4752711/21/2019, 5:30 PM
plain-eye-975911/26/2019, 5:41 PM
But that fails with an error
pulumi stack init dev --secrets-provider="<azurekeyvault://uri-to-the-key>"
error: secrets (code=Unknown): azure.BearerAuthorizer#WithAuthorization: Failed to refresh the Token for request to my-keyvault-uri: StatusCode=0 -- Original Error: adal: Failed to execute the refresh request. Error = connectex: A socket operation was attempted to an unreachable network.'
colossal-beach-4752711/26/2019, 7:42 PM