In this part we dive into Secrets in our provisioned environment and our pipelines/workflows. Demos focused around Azure and GitHub.

Whiteboard and pipelines in the repo.

YouTube Playlist for the whole course    • DevOps Master Class  
GitHub Repo https://github.com/johnthebrit/DevOpsMC

Secrets Class Links:
GitHub Code Security https://docs.github.com/en/codesecurity
Secret Scanning https://docs.github.com/en/codesecur...
Azure Managed Identities https://docs.microsoft.com/enus/azur...
GitHub Secrets https://docs.github.com/en/actions/re...
GitHub Action Azure Login https://github.com/Azure/login
GitHub Workflow Authentication https://docs.github.com/en/actions/re...

Index:
00:00 Introduction
01:05 The need for secrets
03:25 NEVER PUT SECRETS IN CODE
04:11 Secret scanning
06:30 Where to put secrets
08:10 Removing the need for secrets with infrastructure
16:00 Using vaults
20:20 Demo of managed identity and vaults
25:39 Thoughts if NEED an initial secret
27:40 Secrets in pipelines and workflows
37:50 Vault access from a workflow
46:24 Workflow auth to repo
48:37 Summary