I’d like to use a Secret stored in Prefect Cloud i...
# ask-communitys
Stephen Lloyd
04/11/2022, 3:39 PMI’d like to use a Secret stored in Prefect Cloud in my run config. I have stored the secret using
Copy code
>>> from prefect import Client
>>> client = Client()
>>> client.set_secret(name="test", value="test")
>>> client.set_secret(name="AWS_ACCOUNT_ID-dev", value="123456789098") Copy code
from prefect.client import Secret
aws_account_id = Secret('AWS_ACCOUNT_ID-' + RUN_ENV).get() Copy code
ValueError: Local Secret "AWS_ACCOUNT_ID-dev" was not found.k
Kevin Kho
04/11/2022, 3:43 PM
If executing locally, there is a config/env variable and the default is to pull local secrets. Set
Copy code
export PREFECT__CLOUD__USE_LOCAL_SECRETS=falseKevin Kho
04/11/2022, 3:44 PM
This is set to false for agent/cloud runs
s
Stephen Lloyd
04/12/2022, 3:32 AMThanks. Where should I have found tis parameter/config setting?
k
Kevin Kho
04/12/2022, 3:41 AM
I guess it’s not documented on the Secrets page but more generally configurable stuff can be found in the config.toml
s
Stephen Lloyd
04/12/2022, 3:44 AMAh. Should I have this config file stored locally? Do the config selections get uploaded with a flow?
k
Kevin Kho
04/12/2022, 3:52 AM
You need them stored on where the flow is running, or you can pass the env variables
Copy code
PREFECT__CLOUD__XXX_XXXs
Stephen Lloyd
04/13/2022, 4:16 AMThanks so much!
Stephen Lloyd
04/13/2022, 10:16 AM@Kevin Kho Following up on this…
• If I set via
export PREFECT…SECRETS=falseexport PREFECT__USER_CONFIG_PATH=/Users/slloyd/projects/my_path/.prefectuse_local_secret=false$HOME/.prefect/config.tomluse_local_secret=falsek
Kevin Kho
04/13/2022, 1:49 PM
I have noticed the same thing too with the
config.toml6 Views