The latest articles on DEV Community by dannypk (@dannypk). https://dev.to/dannypk https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F290281%2F8ea8f619-17d0-4e6f-b97a-f990512a640a.png https://dev.to/dannypk en dannypk Fri, 13 Dec 2019 19:13:14 +0000 https://dev.to/dannypk/how-to-use-variables-in-bamboo-for-building-and-deploying-and-how-to-store-sensitive-information-3dh4 https://dev.to/dannypk/how-to-use-variables-in-bamboo-for-building-and-deploying-and-how-to-store-sensitive-information-3dh4 <p>Hello Dear Coders,</p> <p>Last time I wrote an article regarding security with <a href="https://medium.com/@daniel.pacurici/nexus-package-manager-how-to-access-your-npm-packages-after-securing-nexus-239aa121a96c">Nexus and NPM Packages</a>. Once your packages are secure, how do your CI Builds are supposed to work and do things like <strong>npm install</strong> or how can they run your docker containers? </p> <p>This article will show you how to do that if you are using Bamboo.</p> <h3> <strong>Bamboo has some 2 types of variables:</strong> </h3> <ul> <li>global variables</li> <li>plan specific variables</li> </ul> <p>If the global variables share the same name as the plan specific variables, then the plan specific variable will overwrite the global variable.</p> <h3> <strong>How to define a global variable:</strong> </h3> <ol> <li>Go to Bamboo and open administrator panel by <em>clicking the cogwheel</em> <img src="https://res.cloudinary.com/practicaldev/image/fetch/s--z01lC9XK--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/8wdis2bn2jatv2otx4ae.JPG" alt="Alt Text"> </li> <li>From the left panel, under <em>Build Resources</em> choose <em>Global Variables</em> <img src="https://res.cloudinary.com/practicaldev/image/fetch/s--Myq8Gu4L--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/atnpx39tq2gliv3hc5b9.JPG" alt="Alt Text"> </li> <li>Create a new variable by giving it a name and a value and <em>click Add</em>. <img src="https://res.cloudinary.com/practicaldev/image/fetch/s--n34ioTse--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/3wregy8f4ac9mtstmp5s.JPG" alt="Alt Text"> </li> </ol> <h3> <strong>How to define a plan variable:</strong> </h3> <ol> <li>Go to the Plan and press <strong>E</strong>(dit) key or go to <em>Actions</em> and click <em>Configure plan</em> <img src="https://res.cloudinary.com/practicaldev/image/fetch/s--mjkpGelw--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/ayp5bsjfa4qq8qt6u6d4.jpg" alt="Alt Text"> </li> <li>Go to <em>Variables</em> <img src="https://res.cloudinary.com/practicaldev/image/fetch/s--AJRh7DLr--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/0uyeeiimoftsbmkck9l4.jpg" alt="Alt Text"> </li> <li>The same step as on global variable</li> </ol> <p>Now you can use that variable in your plans. But what about sensitive information ? </p> <p>Bamboo provides us with a feature that allows us to store sensitive information. If your variable name contains one of the keywords "PASSWORD" or "SECRET", it will automatically encrypt that information <br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s--vX3IcKr6--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/j4mkofbvol8laz1fxp93.JPG" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--vX3IcKr6--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/j4mkofbvol8laz1fxp93.JPG" alt="Alt Text"></a></p> <p>That's a very nice feature and very helpful.</p> <p>After the variables are configured, we can create our task and use our variables like this:<br> </p> <div class="highlight"><pre class="highlight plaintext"><code>export PORT=${bamboo.PORT} echo \_auth = ${bamboo.SECRET_NEXUS_AUTH} &gt;&gt; .npmrc ./docker-build.sh ${bamboo.CONTAINER_NAME} ${bamboo.PORT} </code></pre></div> <p>In your build logs, you will see that the variables are encrypted and the sensitive data is not stored.<br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s---YgvTeOb--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/5f1tzd7fhvcxs843uuwk.jpg" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s---YgvTeOb--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/5f1tzd7fhvcxs843uuwk.jpg" alt="Alt Text"></a></p> <p>The same way you can use the variables in your deployment tasks.</p> <p>Thanks for reading and I hope this will bring a bit of security to your projects. Comments are welcome ! :)</p> devops bamboo ciandcd security dannypk Wed, 11 Dec 2019 15:47:53 +0000 https://dev.to/dannypk/nexus-package-manager-how-to-access-your-npm-packages-after-securing-nexus-bje https://dev.to/dannypk/nexus-package-manager-how-to-access-your-npm-packages-after-securing-nexus-bje <p>Dear coders,</p> <p>I joined Medium.com some days ago and I wrote an interesting article there. But then i found out about dev.to and from now on I will start creating content here. But since I already wrote the article there, I will just link it.</p> <p><a href="https://medium.com/@daniel.pacurici/nexus-package-manager-how-to-access-your-npm-packages-after-securing-nexus-239aa121a96c">https://medium.com/@daniel.pacurici/nexus-package-manager-how-to-access-your-npm-packages-after-securing-nexus-239aa121a96c</a></p> <p>Looking forward for your thoughts. Thank you and happy coding !</p> nexus npm docker node