Clean up environment (secrets)

stefanopilla · February 3, 2021, 1:03am

Hi there,

I’m having some issues with the secrets in my pipeline environment.
I created a simply python script that print all the env variables and checks if the mandatory ones has been defined before start with the rest of the pipeline. The script is simple as this:

import os

MANDATORY_ENV = {‘ENV1’ ‘ENV2’, …}
print(environ)
diff = MANDATORY_ENV.difference(os.environ)
if len(diff) > 0:
print(f"FAILED due missing var env variable: {diff}")
exit(1)

The drone.yaml has the following declaration:

steps:
  - name: *****
    image: *****
    environment:
        ENV1:
          from_secret: ENV1
        ENV2:
          from_secret: ENV2
.....

These are the (weird) issues that I’m facing:

I still see some old secrets that were delete from the settings tab days ago…
I tried to delete and add back the secrets via API. In the settings tab I see all of them but the pipeline seems that is not reading them because when I execute the pipeline I still see the old ones + I’m getting an error that I’m missing some env variables even if I have defined them in the settings tab

Any idea on what’s going on?

Thank you

bradrydzewski · February 3, 2021, 2:01am

There are no known issues with deleting secrets. There is no caching, so if a secret is deleted from the database it cannot be served to your pipeline. The only reason a secret could appear to still exist after being deleted at the repository level is if someone created a global secret or an organization secret of the same name.

Topic		Replies	Views
Global env vars not working with secrets Drone Bugs	2	977	February 7, 2023
Drone doesn't read the secrets setting as the environment variables Drone Support	2	1634	February 8, 2020
Problems with Secrets Drone FAQ	1	5919	December 19, 2018
Secret problems Drone Support	5	1411	October 31, 2018
[solved] Per organization secrets and environment issue Drone Support	1	320	May 8, 2021

Clean up environment (secrets)

Related topics