Secure /

Manage secret groups

Secret groups contain collections of runtime variables or build arguments that will be inherited by services and jobs.

To create or modify a group of secrets, open the secrets section from the project menu.

You can create a group of either runtime variables or build arguments.

Enter the secrets as key value pairs, in JSON format, or import from a .env file.

After creating or editing a secret group you can click restart dependents to redeploy all services and jobs that inherit the secrets with the new values.

Restrict secrets

You can restrict these secrets to specific services or jobs within your project.

Secrets from an unrestricted group will be inherited by all services or jobs within the project that use the type of secret set in the group.

Secrets that have been restricted to specific services or jobs will only be inherited by the selected services and jobs that use the type of secret set in the group.

Group priority

The priority of a secret group determines the value of which group is used if multiple secrets contain the same key.

You can set the priority of a group as any integer between 0 and 100. The secret group with a higher priority will take precedence.

For example if the priority for Group A is 50 and the priority of Group B is 20, the values of Group A will be used for any conflicting keys between the groups:

Secret group A (priority 50)Secret group B (priority 20)Secret group value used
KEY_1KEY_1Group A
KEY_2KEY_2Group A
KEY_3Group B

Dynamic templating

You can use dynamic templating to create new variables from variables previously defined in the secret group.

© 2022 Northflank Ltd. All rights reserved.