Conjur Container Plugin
The Conjur container plugin allows you to manage secrets, credentials, and other sensitive information in a secure manner.
important
You must set up a connection to the Conjur server before adding Conjur tasks. For more information, see Set up Connection to Conjur Server.
note
In the release flow editor, Container tasks have a blue border.
Conjur provides the following features:
- Get Secret (Container)
Prerequisites
For Conjur integration, you need the following:
- Conjur server running and accessible via HTTP(s)
- Remote runner setup to run the container tasks
Set up Connection to Conjur Server
- From the navigation pane, under CONFIGURATION, click Connections.
- Under Secrets management, next to Conjur Server (Container), click
.
The New Conjur Server (Container) page opens. - In the Title field, enter the name of the configuration. This name will display in Conjur tasks.
- In the URL field, enter the URL to access the Conjur server.
- In the Account field, enter the Conjur account associated with the authentication.
- In the Username field, enter the Conjur username used for authentication.
- In the API Key field, enter the Conjur API key used for secure access.
- To test the connection, click Test.
- To save the configuration, click Save.
Get Secret (Container)
The Get Secret (Container) task is used to retrieve sensitive information or secrets securely from the Conjur platform during the deployment or release process.
- In the release flow tab of a Release template, add a task of type Conjur > Get Secret (Container).
- Click the added task to open it.
- In the Capabilities field, enter a value that matches the capability set for your runner. This will help you to route jobs to that particular runner.
- In the Server field, select the Conjur server configured.
- In the Secret Name field, enter the name of the secret as it is stored in Conjur.
