Clouddriver Account Management

Spinnaker 1.28 introduced an alpha API for loading, storing, updating, and otherwise managing Clouddriver account configurations from a database. Combined with a supported external secrets manager , account credentials can be provided by end users when setting up an account configuration.

The following table lists the Clouddriver account types that currently support the account management API. Note that the type discriminator is used as the value for the key in the JSON representation of an account definition.

The default implementation of account storage is through SQL. This can be configured in your clouddriver-local.yml file as well.

Use of the connection pool is also allowed when all Clouddriver SQL data is stored in the same database.

Account management API

Sending the same request body as a PUT request to GATE_URL/credentials will update the existing account definition. Finally, sending a DELETE request to GATE_URL/credentials/my-kubernetes-account will delete the my-kubernetes-account account definition. Both of these endpoints require write permission on the affected account.