CircleCI Service Account Token Rotation

When the Circle CI service account token gets rotated, the Cloud Platform team will provide comms.

Luckily, they only need to be replaced once for the whole platform.

Find the secret name

kubectl –n formbuilder-repos get secrets

Example: circleci-tf-formbuilder-repos-token-dd-mm-yyyy

Repo fb-deploy (read the README)

Edit bin/pipeline_variables bash script

Add new to rotated token name

Run with any service.

./bin/pipeline_variables fb-editor

This will give you the all the required tokens and secrets to set up the pipeline.

The ones we are interested in are:

EKS_CLUSTER_CERT

EKS_TOKEN

Replace in CircleCI > Org > Context > moj_forms

Keep the base64 encoding.

The last unmasked characters may be the same. Just replace them.

This page was last reviewed on 25 March 2024. It needs to be reviewed again on 25 June 2024 .

This page was set to be reviewed before 25 June 2024. This might mean the content is out of date.