<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 08:25:56 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[DRIVERS-2585] Use AWS Secrets Manager for AWS-Related Test Secrets</title>
                <link>https://jira.mongodb.org/browse/DRIVERS-2585</link>
                <project id="10980" key="DRIVERS">Drivers</project>
                    <description>&lt;div class=&quot;panel&quot; style=&quot;background-color: #fafbfc;border-width: 1px;&quot;&gt;&lt;/div&gt;
&lt;h3&gt;&lt;a name=&quot;Summary&quot;&gt;&lt;/a&gt;&lt;b&gt;Summary&lt;/b&gt;&lt;/h3&gt;

&lt;p&gt;_We currently have around 20 Evergreen Project variables that are used to populate a &lt;tt&gt;${DRIVERS_TOOLS}/.evergreen/auth_aws/aws_e2e_setup.json&lt;/tt&gt; file that is used in Drivers Evergeen Tools in test scripts.  As part of &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt;, we now have a mechanism to store and retrieve variables using AWS Secrets Manager, rather than continuing to grow this list of manually updated variables across all drivers.&lt;/p&gt;

&lt;p&gt;All members of &lt;tt&gt;dbx&lt;/tt&gt; have access to view and update the secrets using the &lt;tt&gt;drivers-test-secrets-role&lt;/tt&gt; login option in the Drivers AWS account.&lt;/p&gt;

&lt;p&gt;This project would move the existing affected Project Variables and create a new wiki page for the maintenance and upkeep of these secrets.  There would be a new script created in Drivers Evergreen Tools to create an expansion file used by EG to provide these values as environment variables which can then be used by the existing scripts instead of loading the values from &lt;tt&gt;aws_e2e_setup.json&lt;/tt&gt;.   &lt;/p&gt;

&lt;p&gt;Drivers would then replace the portion of their Evergreen Config with a block that acquires the appropriate credentials and expands the variables.  They would also be able to remove the affected project variables from EG.&lt;/p&gt;

&lt;h3&gt;&lt;a name=&quot;Motivation&quot;&gt;&lt;/a&gt;&lt;b&gt;Motivation&lt;/b&gt;&lt;/h3&gt;
&lt;p&gt;Adding and updating credentials currently requires the coordination of all of the driver teams, and manual effort.&lt;/p&gt;</description>
                <environment></environment>
        <key id="2299233">DRIVERS-2585</key>
            <summary>Use AWS Secrets Manager for AWS-Related Test Secrets</summary>
                <type id="11" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14707&amp;avatarType=issuetype">Epic</type>
                                            <priority id="10300" iconUrl="https://jira.mongodb.org/images/icons/priorities/medium.svg">Unknown</priority>
                        <status id="11263" iconUrl="https://jira.mongodb.org/images/icons/statuses/generic.png" description="">Scheduled</status>
                    <statusCategory id="2" key="new" colorName="default"/>
                                    <resolution id="-1">Unresolved</resolution>
                                        <assignee username="noah.stapp@mongodb.com">Noah Stapp</assignee>
                                    <reporter username="steve.silvester@mongodb.com">Steve Silvester</reporter>
                        <labels>
                    </labels>
                <created>Tue, 28 Mar 2023 00:09:27 +0000</created>
                <updated>Mon, 29 Jan 2024 13:40:37 +0000</updated>
                                                                                    <votes>0</votes>
                                    <watches>3</watches>
                                                                                                                <comments>
                            <comment id="6048781" author="xgen-internal-githook" created="Mon, 29 Jan 2024 13:40:37 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2585&quot; title=&quot;Use AWS Secrets Manager for AWS-Related Test Secrets&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2585&quot;&gt;DRIVERS-2585&lt;/a&gt; Use AWS Secrets Manager for CSFLE (#390)&lt;/p&gt;

&lt;ul&gt;
	&lt;li&gt;Add csfle scripts&lt;/li&gt;
&lt;/ul&gt;


&lt;p&gt;---------&lt;/p&gt;

&lt;p&gt;Co-authored-by: Kevin Albertson &amp;lt;kevin.albertson@10gen.com&amp;gt;&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/4393c2873d25dceaacd9ec27278d3b795e82c933&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/4393c2873d25dceaacd9ec27278d3b795e82c933&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5675807" author="xgen-internal-githook" created="Fri, 1 Sep 2023 20:20:57 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2585&quot; title=&quot;Use AWS Secrets Manager for AWS-Related Test Secrets&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2585&quot;&gt;DRIVERS-2585&lt;/a&gt; Make the Secrets Access errors more user friendly (#347)&lt;/p&gt;

&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2585&quot; title=&quot;Use AWS Secrets Manager for AWS-Related Test Secrets&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2585&quot;&gt;DRIVERS-2585&lt;/a&gt; Make the errors more user friendly&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/98968d3ed3015fbe68d63616a558da2817d8173b&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/98968d3ed3015fbe68d63616a558da2817d8173b&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5670394" author="xgen-internal-githook" created="Wed, 30 Aug 2023 20:56:42 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Steven Silvester&apos;, &apos;email&apos;: &apos;steven.silvester@ieee.org&apos;, &apos;username&apos;: &apos;blink1073&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2585&quot; title=&quot;Use AWS Secrets Manager for AWS-Related Test Secrets&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2585&quot;&gt;DRIVERS-2585&lt;/a&gt; Migrate OIDC Secrets Handling (#345)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/da3c4267f1f9065592c1693f75ed9f1b2792cce0&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/da3c4267f1f9065592c1693f75ed9f1b2792cce0&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5633159" author="xgen-internal-githook" created="Mon, 14 Aug 2023 18:35:45 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Noah Stapp&apos;, &apos;email&apos;: &apos;noah.stapp@mongodb.com&apos;, &apos;username&apos;: &apos;NoahStapp&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2585&quot; title=&quot;Use AWS Secrets Manager for AWS-Related Test Secrets&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2585&quot;&gt;DRIVERS-2585&lt;/a&gt; Default to AWS_PROFILE if a profile is not provided (#337)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/efbd141ca717f82f2ab18ac78855d008a0d8e63c&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/efbd141ca717f82f2ab18ac78855d008a0d8e63c&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5621895" author="xgen-internal-githook" created="Tue, 8 Aug 2023 23:00:10 +0000"  >&lt;p&gt;Author: &lt;/p&gt;
{&apos;name&apos;: &apos;Noah Stapp&apos;, &apos;email&apos;: &apos;noah.stapp@mongodb.com&apos;, &apos;username&apos;: &apos;NoahStapp&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2585&quot; title=&quot;Use AWS Secrets Manager for AWS-Related Test Secrets&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2585&quot;&gt;DRIVERS-2585&lt;/a&gt; Use AWS Secrets Manager for AWS-Related Test Secrets (#334)&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/0361b3fd3a9f1641518aa2f37d872d3346e8a450&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb-labs/drivers-evergreen-tools/commit/0361b3fd3a9f1641518aa2f37d872d3346e8a450&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="5355904" author="JIRAUSER1268808" created="Tue, 18 Apr 2023 15:18:30 +0000"  >&lt;p&gt;Bringing this to triage today since this came up again in Slack for where we store secrets. We should figure out next steps for 1Password even if this ticket doesn&apos;t get picked up&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10620">
                    <name>Issue split</name>
                                            <outwardlinks description="split to">
                                        <issuelink>
            <issuekey id="2406628">CDRIVER-4701</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406630">CSHARP-4741</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406629">CXX-2724</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406631">GODRIVER-2928</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406632">JAVA-5094</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406634">MOTOR-1167</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406633">NODE-5507</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406636">PHPLIB-1216</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406635">PYTHON-3895</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406637">RUBY-3311</issuekey>
        </issuelink>
            <issuelink>
            <issuekey id="2406638">RUST-1717</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                                                <inwardlinks description="is related to">
                                        <issuelink>
            <issuekey id="2116020">DRIVERS-2415</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                            <customfield id="customfield_20965" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Cost Threshold %</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>100.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_20963" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Cost to Date</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_13653" key="com.atlassian.jira.plugin.system.customfieldtypes:textarea">
                        <customfieldname>Detailed Project Statuses</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>&lt;p&gt;Engineer(s): &lt;em&gt;Noah Stapp&lt;/em&gt;&lt;br/&gt;
Summary:&#160;&lt;em&gt;Migrate AWS Secrets to AWS Secret Manager from Evergreen Project Variables.&lt;/em&gt;&lt;/p&gt;

&lt;p&gt;&lt;em&gt;2023-09-15&lt;/em&gt;:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Status update:
	&lt;ul&gt;
		&lt;li&gt;Completed AWS tests with the Python driver.&lt;/li&gt;
		&lt;li&gt;Paused work to focus on other quarterly tasks.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;&lt;em&gt;2023-09-01&lt;/em&gt;:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Status update:
	&lt;ul&gt;
		&lt;li&gt;Finished Atlas connection tests, wrapping up AWS tests with Python Driver.&#160; Go Driver has implemented Atlas connection tests.&#160; OIDC is also being migrated as part of &lt;a href=&quot;https://jira.mongodb.org/browse/DRIVERS-2415&quot; title=&quot;Implement OIDC SASL mechanism&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DRIVERS-2415&quot;&gt;DRIVERS-2415&lt;/a&gt; updates this quarter.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Risks or delays:
	&lt;ul&gt;
		&lt;li&gt;Some secret values may need to be re-generated if the original source is lost&lt;/li&gt;
		&lt;li&gt;Variations in Evergreen project configuration have required additional work to generalize AWS Secret integrations.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;


&lt;hr /&gt;
&lt;p&gt;&lt;em&gt;2023-08-21&lt;/em&gt;:&lt;/p&gt;
&lt;ul&gt;
	&lt;li&gt;Status update:
	&lt;ul&gt;
		&lt;li&gt;First implementation in Python underway, steadily progressing through test suites.&lt;/li&gt;
		&lt;li&gt;Separating each test suite&apos;s secrets into separate vaults for better security.&#160;&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Risks or delays:
	&lt;ul&gt;
		&lt;li&gt;Some secret values may need to be re-generated if the original source is lost&lt;/li&gt;
		&lt;li&gt;Possible variations in Evergreen project configuration could require additional work to generalize AWS Secret integrations.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;
</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                    <customfield id="customfield_10951" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Driver Changes</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10748"><![CDATA[Needed]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_23952" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Driver Compliance</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[<style type='text/css'>
         #scriptField, #scriptField *{
                border: 1px solid black;
            }

            #scriptField{
                border-collapse: collapse;
            }

            #scriptField td {
                text-align: center; /* Center-align text in table cells */
            }

            #scriptField td.key {
                text-align: left; /* Left-align text in the Key column */
            }

            #scriptField a {
                text-decoration: none; /* Remove underlines from links */
                border: none; /* Remove border from links */
            }
            
            /* Add green background color to cells with FixVersion */
            #scriptField td.hasFixVersion {
                background-color: #00FF00; /* Green color code */
            }

            /* Center-align the first row headers */
            #scriptField th {
                text-align: center;
            }
        </style>
<table id='scriptField'>
  <tr>
    <th>Key</th>
    <th>Status/Resolution</th>
    <th>FixVersion</th>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/CDRIVER-4701'>CDRIVER-4701</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/CXX-2724'>CXX-2724</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/CSHARP-4741'>CSHARP-4741</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/GODRIVER-2928'>GODRIVER-2928</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/JAVA-5094'>JAVA-5094</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/NODE-5507'>NODE-5507</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/MOTOR-1167'>MOTOR-1167</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/PYTHON-3895'>PYTHON-3895</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/PHPLIB-1216'>PHPLIB-1216</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/RUBY-3311'>RUBY-3311</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
  <tr>
    <td class='key'>
      <a href='https://jira.mongodb.org/browse/RUST-1717'>RUST-1717</a>
    </td>
    <td>Blocked</td>
    <td class=''></td>
  </tr>
</table>]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_18362" key="com.atlassian.jira.plugin.system.customfieldtypes:userpicker">
                        <customfieldname>Engineering Lead</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>steven.silvester@gmail.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_10858" key="com.pyxis.greenhopper.jira:gh-epic-label">
                        <customfieldname>Epic Name</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Use AWS Secrets Manager for AWS-Related Test Secrets</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10859" key="com.pyxis.greenhopper.jira:gh-epic-status">
                        <customfieldname>Epic Status</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10640"><![CDATA[To Do]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_20964" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Final Cost Estimate</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_18359" key="com.atlassian.jira.plugin.system.customfieldtypes:userpicker">
                        <customfieldname>Program Manager</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>esha.bhargava@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|i1keps:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_10856" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>Scope Cost Estimate</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                </customfields>
    </item>
</channel>
</rss>