Using vault secrets in job spec

bradley · November 19, 2021, 6:09am

I am creating a job spec. I need to pull my images from a private repo. I want to put my repo credentials in the vault. So I am not sure how to pull them from vault and put into the job spec

task "fvtt" {
      driver = "docker"
      config {
        image = "registry.gitlab.com/harry/source/myimage:0.6.0"
        auth {
          username = "{{ }}"
          password = "{{ }}"
        }

I see how to use the template to add env values to the task env. But I don’t see how to pull from vault to actually use in the job spec.

Any help would be greatly appreciated.
Brad

lgfa29 · November 19, 2021, 10:16pm

Hi @bradley

This is a known feature gap, and we have a feature request open to track it.

For now it would be best to configure the plugin if possible.

Would you mind adding a to the issue?

Thank you!

Topic		Replies	Views
Consuming Vault Secret On Nomad Job Task Nomad vault	4	2076	April 8, 2021
Clone private repository and use key stored in vault? Nomad	0	838	January 16, 2022
Hide credentials in job definition Nomad vault	4	712	June 20, 2022
How to use nomad to deliver Vault AppRole SecretID? Nomad	2	398	January 14, 2023
Secrets from Vault (Missing: vault.read(secrets/xxxxx)) Nomad vault	2	60	November 25, 2024

Using vault secrets in job spec

Related topics