Skip to main content

Limit admin secret visibility

note

Tier: Enterprise

Overview

In some cases, it may be desirable to limit what sensitive fields admins can view in secrets. By default admins see all secrets and are able to reveal the sensitive fields (like Password or Card Number).

How it works

When the feature is enabled:

  • Secrets where the admin does not have permission return with a new permission state: limited. All sensitive fields are removed from the secret.
  • Admins are prevented from impersonating users to bypass restrictions.

Enabling the feature

This feature is controlled through a build variable in Google Cloud Build:

  1. Go to Google Cloud Console → Cloud Build → Triggers.
  2. Select the passwd-pipeline trigger.
  3. Add a new variable: _LIMIT_ADMIN_PERMISSIONS = true
  4. Save and redeploy.

Notes

  • By default, the variable is not set, meaning admins can view all fields as usual.
  • Enabling the flag will apply to all environments where the pipeline is deployed.