Terragrunt's sops_decrypt_file()
does not work with GOOGLE_CREDENTIALS environment variable
#2472
Labels
bug
Something isn't working
p:needs triage
Needs to be processed by maintainer and issue type / priority added
Hi
We use
GOOGLE_CREDENTIALS
with the service account's private key in our CI to authenticate with GCP. Recently, we decided to addsops_decrypt_file()
to our CI to pass some credentials down to the module which is supposed to work withGOOGLE_CREDENTIALS
according to this PR but we are consistently getting:Call to function "sops_decrypt_file" failed: Error getting data key: 0 successful groups required, got 0.
We are running sops v3.7.3. I was able to reproduce this error on my local with a dummy Terragrunt/Terraform module and only
GOOGLE_CREDENTIALS
set.Binary
sops --decrypt secretsfile.yaml
works fine. Onlysops_decrypt_file()
doesn't.The very same Terragrunt/Terraform configuration works fine when using application default credentials.
Does
sops_decrypt_file()
work withGOOGLE_CREDENTIALS
?The text was updated successfully, but these errors were encountered: