feat(): make secrets parameter optional

2025-11-14 18:13:45 +00:00 · 2022-03-05 12:49:03 -08:00 · 2022-03-05 12:49:03 -08:00 · fd3c78f918
commit fd3c78f918
parent 67281159df
4 changed files with 6397 additions and 3 deletions
--- a/README.md
+++ b/README.md
@ -288,7 +288,7 @@ Here are all the inputs available through `with`:
 | Input               | Description                                                                                                                                          | Default | Required |
 | ------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------- | ------- | -------- |
 | `url`               | The URL for the vault endpoint                                                                                                                       |         | ✔        |
-| `secrets`           | A semicolon-separated list of secrets to retrieve. These will automatically be converted to environmental variable keys. See README for more details |         | ✔        |
+| `secrets`           | A semicolon-separated list of secrets to retrieve. These will automatically be converted to environmental variable keys. See README for more details |         |          |
 | `namespace`         | The Vault namespace from which to query secrets. Vault Enterprise only, unset by default                                                             |         |          |
 | `method`            | The method to use to authenticate with Vault.                                                                                                        | `token` |          |
 | `role`              | Vault role for specified auth method                                                                                                                 |         |          |
--- a/action.yml
+++ b/action.yml
@ -6,7 +6,7 @@ inputs:
    required: true
  secrets:
    description: 'A semicolon-separated list of secrets to retrieve. These will automatically be converted to environmental variable keys. See README for more details'
-    required: true
+    required: false
  namespace:
    description: 'The Vault namespace from which to query secrets. Vault Enterprise only, unset by default'
    required: false
--- a/src/action.js
+++ b/src/action.js
@ -14,7 +14,7 @@ async function exportSecrets() {
    const exportEnv = core.getInput('exportEnv', { required: false }) != 'false';
    const exportToken = (core.getInput('exportToken', { required: false }) || 'false').toLowerCase() != 'false';

-    const secretsInput = core.getInput('secrets', { required: true });
+    const secretsInput = core.getInput('secrets', { required: false });
    const secretRequests = parseSecretsInput(secretsInput);

    const vaultMethod = (core.getInput('method', { required: false }) || 'token').toLowerCase();
@ -103,6 +103,10 @@ async function exportSecrets() {
 * @param {string} secretsInput
 */
 function parseSecretsInput(secretsInput) {
+    if (!secretsInput) {
+      return []
+    }
+
    const secrets = secretsInput
        .split(';')
        .filter(key => !!key)
--- a/yarn.lock
+++ b/yarn.lock