Join discussions on data engineering best practices, architectures, and optimization strategies within the Databricks Community. Exchange insights and solutions with fellow data engineers.
To view existing secrets within a scope, use the following command:
databricks secrets list-secrets <scope-name>
Read a Secret:
While you create secrets using the REST API or CLI, you must use the Secrets utility (dbutils.secrets) in a notebook or job to read a secret.
Use Secrets in Spark Configuration Properties or Environment Variables:
You can reference a secret in a Spark configuration property or environment variable. Retrieved secrets are redacted from notebook output and Spark driver and executor logs.
Keep in mind the security implications:
If table access control is not enabled on a cluster, any user with appropriate permissions can read Spark configuration properties from within a notebook.
Databricks recommends enabling table access control or managing access to secrets using secret scopes.
Even when table access control is enabled, users with certain permissions can still read cluster environment variables from within a notebook.
If you need further assistance, feel free to ask! ๐
Connect with Databricks Users in Your Area
Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you wonโt want to miss the chance to attend and share knowledge.
If there isnโt a group near you, start one and help create a community that brings people together.