Hi,
I would like to understand how I can set up workspace-wide SSH keys for Pipelines to fetch Golang modules located on Bitbucket, please.
Thank you!
Hi!
Here are the steps to achieve this.
1. Create the ssh key in the pipeline settings for the repo (Repository settings > Pipelines > SSH Keys)
2. Copy the public key to the dependent repo access keys (Repository settings > Access keys)
3. Execute the following command in any context that will need to pull go dependencies. It tells git to rewrite https URLs to ssh URLs:
git config --global url."git@bitbucket.org:<workspaceID>".insteadOf "https://bitbucket.org/<workspaceID>"
4. Also execute the following:
export GOPRIVATE=bitbucket.org/<workspaceID>
This tells golang not to use the public checksum database for dependencies that use that URL.
@Leonardo M how do you do the step 1 for all repo pipelines at single place, say at the workspace level. its a pain to manage the ssh keys at each pipeline level, we need it to be at the workspace or the project level. Even the envirnoment variables are not configurable/overridable at project level. are there anything for this?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
don't work for me
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
any update on this by any chance?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
configuring this at the workspace level instead of each repo would be greatly appreciated
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
+, Any update?
There seems to be no options to pass ssh private key to all workspace pipelines except for store it in an env variable (which works, but not very elegant).
Another option is workspace-wide access token, but by coincidence this is a paid feature
Any plans to implement this, or any convenient alternative?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.