Examples: query, "exact match", wildcard*, wild?ard, wild*rd
Fuzzy search: cake~ (finds cakes, bake)
Term boost: "red velvet"^4, chocolate^2
Field grouping: tags:(+work -"fun-stuff")
Escaping: Escape characters +-&|!(){}[]^"~*?:\ with \, e.g. \+
Range search: properties.timestamp:[1587729413488 TO *] (inclusive), properties.title:{A TO Z}(excluding A and Z)
Combinations: chocolate AND vanilla, chocolate OR vanilla, (chocolate OR vanilla) NOT "vanilla pudding"
Field search: properties.title:"The Title" AND text
Hi, I Have A Question Around The Storage Of Credentials For The Open-Source Version Of Clearml. I See From The Documentation That The Hashed Passwords For Web-Login Are Stored In One Of The Files In The Instance Where Clearml Is Hosted & That The Feature

Hi, I have a question around the storage of credentials for the open-source version of ClearML. I see from the documentation that the hashed passwords for web-login are stored in one of the files in the instance where ClearML is hosted & that the feature for a secret vault is a part of the Enterprise version of ClearML.
But, is there a way I can incorporate a self setup for the vault to utilize AWS Secret Manager or any other vault that I am currently using with the open-source version of ClearML?

Posted 5 months ago
Votes Newest

Answers 5

Hi @<1523701132025663488:profile|SlimyElephant79> , where would you like this AWS Secret Manager data to be available and what would you like to use it for?

Posted 5 months ago

Hi @<1523701087100473344:profile|SuccessfulKoala55> , I'd like the Secret Manager to store the creds of the users & ClearML to utilize this instead of a file in a local directory. Or, we could also work with some options where the creds are stored within one of the databases that ClearML server already utilizes.
The AWS Secret Manager data would be within the accounts where we have set up the ClearML server in AMI/EC2 instances.

Posted 5 months ago

In this scenario, I assume this would have to be pulled somehow from the secret manager on a ClearML remote run - how would ClearML know which user's data should be pulled from the secret manager? I assume your remote executions are using the agent's docker mode?

Posted 5 months ago

Great question!
Actually I was wondering if ClearML had that integration possible from clearml-agent daemon requesting for temporary injection of required credentials from API-server which then requests Secret Manager. How does the Enteprrise version of ClearML currently do it when it has its own vault?

Posted 5 months ago

But I think I want to clarify something here after re-reading your message. My question is whether the API server can read credentials or weblogin password, username from something like Secret Manager rather than using a local file like secure.conf or apiserver.conf.

Posted 5 months ago
5 Answers
5 months ago
5 months ago