HashiCorp Cloud Platform
Add a data source - GitHub
Vault Radar allows you to connect to any organization on GitHub Cloud and GitHub Enterprise Server.
Connection limit
When you connect to GitHub as the data source, there is an upper limit of 5000 repositories that you can connect.
Add GitHub Cloud
Prerequisites
Organization
- Navigate to your GitHub Cloud organization
- This should be the organization string in the url
https://github.com/ORGANIZATION
- This can also be found in the upper left-hand corner (not to be confused with the display name right underneath, which can be set to something different if configured on your organization)
Personal Access Token (with the right set of scopes)
Create a connection with GitHub Cloud
Select Settings/Data Sources.
Click on the GitHub Cloud button.
Enter the organization in the GitHub Organization text field.
Enter the personal access token in the Personal Access Token text field.
Click Next.
Add GitHub Enterprise Server
Prerequisites
Domain name of your instance
Organization
- Navigate to your GitHub Enterprise Server organization
- This should be the organization in the url
https://github.acme.com/ORGANIZATION
Personal Access Token (with the right set of scopes)
Create a connection with GitHub Enterprise Server
Select Settings/Data Sources.
Click on the GitHub Enterprise button.
Enter the domain url in the Domain name text field.
Enter the organization in the Organization text field.
Enter the personal access token in the Personal Access Token text field.
Click Next.
Add repositories to Vault Radar
Once the connection had been established, you can select which repositories you want to install by selecting a group or all.
Note
Vault Radar has a limit of 5000 repositories per connection. If you have more then 5000 repositories, Vault Radar will select the 5000 repositories with the most recent activity.
Assign a group to a resource
Once a data source has been added, an HCP user with the admin
role must assign
a group to each of the monitored resources within each data source. Each
resource can be assigned to only one group.
Note
Users with the HCP IAM admin role do not need to be added to a group. Accounts with the admin role have full access to Vault Radar.
Create a group at the HCP project level.
Assign either the viewer or contributor role to the group.
Navigate to the resource and click Add to group.
Select the group that requires access to the resource.