To retrieve data from Git, you must connect to Git via the Edge site.
Prerequisites
- You have a global role with the Product Rights > System administration global permission.
- You have a global role that has the Manage Edge sites global permission.
- You have a global role that has the Manage connections and capabilities global permission.
- You have a resource role with the Configure external system resource permission, for example, Owner.
- You have added a vault to your Edge site.Note Vaults are not supported on Collibra Cloud sites.
- If your data source connection requires a file from your vault, the file must be encoded into Base64 and stored as a regular secret in your vault.
Steps
- Open a site.
-
On the main toolbar, click
→
Settings.
The Settings page opens. -
In the tab pane, click Edge.
The Sites tab opens and shows a table with an overview of your sites. - In the site overview, click the name of a site.
The site page appears.
-
On the main toolbar, click
- In the Connections section, click Create Connection.
The Create Connection dialog box appears. - Select Git connection.
- Enter the required information.
Field Description Required Name The name of the connection. The name can be anything, as long as it is unique.
Tip The name that you provide here is the name you have to select in the Git connection field, when adding the technical lineage capability to the Edge site.
Yes
Description The description of the connection. 
No
Vault The vault where you store your data source values. No
Git Repository URL Enter the HTTPS URL of the Git repository root, for example:
https://github.com/org/repo.git.When using a Git connection with Looker, this value is required but not used to retrieve repositories, as repository information is obtained from the Looker API. You can enter a placeholder value, for example,
*or any valid string, to satisfy the required field.How to use your vault...To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the query value to identify the secret in your vault.Example
Note The Query must be a string containing the properties required to identify the secret. Each property must be separated by a semicolon (;). For example: Safe=<SafeName>;Folder=<FolderName>;Object=<ObjectName>If a property is a folder with sub-folders, use a backslash (\) to define the folder path. For example: Folder=Root\Top Secrets\More Secrets
For more information about query formats and supported properties, go to the CyberArk Credential Provider documentation.
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Secret Engine Type
- Select one of the following:
- Key Value
- Database
- Engine Path
- The engine path to your vault where the value is stored.
- Secret Path
- The secret path to your vault where the value is stored.
- Field
- If your Secret Engine Type is Key Value, enter the name of the field to your vault where the value is stored.
- Role
- If your Secret Engine Type is Database, enter the role specified in the Database engine.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Vault Name
- The name of your Azure Key Vault in your Azure Key Vault service where the value is stored.
- Secret Name
- The name of the secret in your vault where the value is stored.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Secret Name
- The name of the secret in your vault where the value is stored.
- Field
- If the secret stored in your AWS Secrets Manager is a JSON value, for example
{"pass1": "my-password", "pass2": "my-password2"}, then you need to specify the Field to point to the exact JSON value that should be used. For example,Secret Name: edge-db-customer; Field: pass.Note If the secret stored in your AWS Secrets Manager is a plain string value, for examplemy-password, then you do not need to specify the Field.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the name of the secret in your vault where the value is stored.
Example
Yes
Subfolder Enter the path to a subfolder within the repository, for example:srcorprojects/analytics. Leave empty to access the entire repository.How to use your vault...To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the query value to identify the secret in your vault.ExampleNote The Query must be a string containing the properties required to identify the secret. Each property must be separated by a semicolon (;). For example: Safe=<SafeName>;Folder=<FolderName>;Object=<ObjectName>
If a property is a folder with sub-folders, use a backslash (\) to define the folder path. For example: Folder=Root\Top Secrets\More Secrets
For more information about query formats and supported properties, go to the CyberArk Credential Provider documentation.
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Secret Engine Type
- Select one of the following:
- Key Value
- Database
- Engine Path
- The engine path to your vault where the value is stored.
- Secret Path
- The secret path to your vault where the value is stored.
- Field
- If your Secret Engine Type is Key Value, enter the name of the field to your vault where the value is stored.
- Role
- If your Secret Engine Type is Database, enter the role specified in the Database engine.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Vault Name
- The name of your Azure Key Vault in your Azure Key Vault service where the value is stored.
- Secret Name
- The name of the secret in your vault where the value is stored.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Secret Name
- The name of the secret in your vault where the value is stored.
- Field
- If the secret stored in your AWS Secrets Manager is a JSON value, for example
{"pass1": "my-password", "pass2": "my-password2"}, then you need to specify the Field to point to the exact JSON value that should be used. For example,Secret Name: edge-db-customer; Field: pass.Note If the secret stored in your AWS Secrets Manager is a plain string value, for examplemy-password, then you do not need to specify the Field.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the name of the secret in your vault where the value is stored.
Example
No
Authentication Type The authentication type used to connect to the Git repository.
How to use your vault...To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the query value to identify the secret in your vault.ExampleNote The Query must be a string containing the properties required to identify the secret. Each property must be separated by a semicolon (;). For example: Safe=<SafeName>;Folder=<FolderName>;Object=<ObjectName>
If a property is a folder with sub-folders, use a backslash (\) to define the folder path. For example: Folder=Root\Top Secrets\More Secrets
For more information about query formats and supported properties, go to the CyberArk Credential Provider documentation.
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Secret Engine Type
- Select one of the following:
- Key Value
- Database
- Engine Path
- The engine path to your vault where the value is stored.
- Secret Path
- The secret path to your vault where the value is stored.
- Field
- If your Secret Engine Type is Key Value, enter the name of the field to your vault where the value is stored.
- Role
- If your Secret Engine Type is Database, enter the role specified in the Database engine.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Vault Name
- The name of your Azure Key Vault in your Azure Key Vault service where the value is stored.
- Secret Name
- The name of the secret in your vault where the value is stored.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the required information:
- Secret Name
- The name of the secret in your vault where the value is stored.
- Field
- If the secret stored in your AWS Secrets Manager is a JSON value, for example
{"pass1": "my-password", "pass2": "my-password2"}, then you need to specify the Field to point to the exact JSON value that should be used. For example,Secret Name: edge-db-customer; Field: pass.Note If the secret stored in your AWS Secrets Manager is a plain string value, for examplemy-password, then you do not need to specify the Field.
Example
To use your vault, do the following:- In the Value Type field, select Vault Key.
- Enter the name of the secret in your vault where the value is stored.
Example
Yes
Username Enter the username used for authentication. This field is required for Bitbucket repositories.
If not specified, it is derived automatically based on the Git service, for example,
x-access-tokenfor GitHub andoauth2for GitLab. No
Access Token Enter a personal access token (PAT) for authenticating with the Git repository. Repositories that the token cannot access are skipped.
For instructions, go to your Git provider's documentation on creating access tokens.
No
- Click Create.
Add the Technical Lineage for Looker capability to your Edge or Collibra Cloud site.