Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[AIRFLOW-4846] Allow specification of an existing secret containing git credentials for init containers #5475

Merged
merged 1 commit into from
Aug 19, 2019

Conversation

george-miller
Copy link
Contributor

Make sure you have checked all steps below.

Jira

Description

  • Here are some details about my PR, including screenshots of any UI changes:

I would like to specify username/password git credentials as a secret so that I don't have plaintext username/passwords stored in my airflow configuration file. We can assume the given secret has GIT_USERNAME and GIT_PASSWORD fields.

Tests

  • My PR adds the following unit tests OR does not need testing for this extremely good reason:

Commits

  • My commits all reference Jira issues in their subject lines, and I have squashed multiple commits if they address the same issue. In addition, my commits follow the guidelines from "How to write a good git commit message":
    1. Subject is separated from body by a blank line
    2. Subject is limited to 50 characters (not including Jira issue reference)
    3. Subject does not end with a period
    4. Subject uses the imperative mood ("add", not "adding")
    5. Body wraps at 72 characters
    6. Body explains "what" and "why", not "how"

Documentation

  • In case of new functionality, my PR adds documentation that describes how to use it.
    • All the public functions and the classes in the PR contain docstrings that explain what it does
    • If you implement backwards incompatible changes, please leave a note in the Updating.md so we can assign it to a appropriate release

Code Quality

  • Passes flake8

@george-miller george-miller force-pushed the git_credentials_secret branch 4 times, most recently from 910aabf to 558cebf Compare June 25, 2019 21:49
@george-miller george-miller force-pushed the git_credentials_secret branch 3 times, most recently from 2f6c838 to f03d78c Compare July 25, 2019 19:28
Copy link
Member

@ashb ashb left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good - one small change to make this easier for people to know how to use.

@@ -678,6 +678,9 @@ git_dags_folder_mount_point =
git_ssh_key_secret_name =
git_ssh_known_hosts_configmap_name =

# To give git_sync a secret containing git credentials, use this
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you extend the comment to say what fields are read from the secret?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Definitely. How does this look @ashb ?

@george-miller
Copy link
Contributor Author

@ashb Sorry to bother you. Mind looking at this again? Thanks!

@ashb ashb merged commit 1b19b0c into apache:master Aug 19, 2019
ashb pushed a commit to ashb/airflow that referenced this pull request Aug 20, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants