The following plugin provides functionality available through Pipeline-compatible steps. Read more about how to integrate steps into your Pipeline in the Steps section of the Pipeline Syntax page.

For a list of other such plugins, see the Pipeline Steps Reference page.

Azure Key Vault Plugin

azureKeyVault: azureKeyVault

  • secrets
      Array / List of Nested Object
    • secretType
      Key Vault supports two types of secrets
      • Secrets are passwords or any arbitrary text
      • Certificates are X.509 certificates in PKCS12 format (PFX)
      • Type: String
    • name
      Name of the secret to retrieve from Key Vault
      • Type: String
    • envVariable
      Environment Variable to which the secret will be assigned
      • For secrets, the variable will contain the value of the secret
      • For certificates, the variable will contain the path to the certificate in pkcs12 format
      • Type: String
    • version (optional)
      Version of the secret to retrieve from Key Vault
      • Type: String
  • credentialID (optional)
    Specify the Credential ID used for accessing Key Vault.
    • Must be a Azure Service Principal or Azure Managed Identity
    • Type: String
  • keyVaultURL (optional)
    OPTIONAL: Override the globally configured Key Vault URL (e.g. https://YOURKEYVAULT.vault.azure.net)
    • Type: String

withAzureKeyvault: Bind credentials in Azure Key Vault to variables

  • azureKeyVaultSecrets
      Array / List of Nested Object
    • secretType
      Key Vault supports two types of secrets
      • Secrets are passwords or any arbitrary text
      • Certificates are X.509 certificates in PKCS12 format (PFX)
      • Type: String
    • name
      Name of the secret to retrieve from Key Vault
      • Type: String
    • envVariable
      Environment Variable to which the secret will be assigned
      • For secrets, the variable will contain the value of the secret
      • For certificates, the variable will contain the path to the certificate in pkcs12 format
      • Type: String
    • version (optional)
      Version of the secret to retrieve from Key Vault
      • Type: String
  • applicationIDOverride (optional)
    OPTIONAL: Override the configured application ID to access Key Vault.
    • Type: String
  • applicationSecretOverride (optional)
    OPTIONAL: Set an Application Secret directly
    It is recommended to use the CredentialID field instead.
    • Type: String
  • credentialIDOverride (optional)
    Specify the Credential ID used for accessing Key Vault.
    • Must be a Azure Service Principal or Azure Managed Identity
    • Type: String
  • keyVaultURLOverride (optional)
    OPTIONAL: Override the configured Key Vault URL (e.g. https://YOURKEYVAULT.vault.azure.net)
    • Type: String
  • tenantIdOverride (optional)
    Override the tenantId, only used if you're explicitly providing an override client ID and secret.
    • Type: String

Was this page helpful?

Please submit your feedback about this page through this quick form.

Alternatively, if you don't wish to complete the quick form, you can simply indicate if you found this page helpful?

    


See existing feedback here.