Encrypted Environment Variable Secrets | Voters

KintoHub

Create

Roadmap

Feature Requests

Changelog

Encrypted Environment Variable Secrets

planned

Noah Cooper

You can use secrets to manage any sensitive data which a container needs at runtime but you don’t want to store in the image or in source control. We will one way encrypt your data which can be updated through the environment variables.

October 30, 2019

Joseph Cooper

marked this post as

planned

Joseph Cooper

Hey Voters -
We are looking into building this soon. Right now we need to know how important it is to:
(a) ensure env vars are hidden for sensitive information, but can be revealed
(b) env vars should be 100% hidden (aka secrets) like secrets on github where you cannot get the value after you insert it
(c) Be able to reference values of other services (env vars as a reference) - an example: {{postgres.kinto.ADMIN_CONNECTION_STRING}} where postgres
 is the service and ADMIN_CONNECTION_STRING
 is a kinto related env vars.
Another example:
{{backendapi.envs.SENGRID_API_KEY}} where backendapi
 is the service and SENDGRID_API_KEY
 is an env var within that service.

Joseph Cooper

marked this post as

under review