README
¶
File Secret Backend
Warning: This Secret Backend is not secure: use it only for development or test
Files structure
- Create a
.secretsdirectory - Each secret is defined as a file and must have a
.keyextension - Each file is must be composed of two parts :
- secret name: the first line of the file always starting with
cds/prefix - secret value: the other lines
- secret name: the first line of the file always starting with
CDS Setup
File Secret Backend is the default mode in CDS. So you don't have to set any option.
You can set the path to your .secrets directory (or use a different name) with option --secret-backend-option "secret_directory=/path/to/my_directory". If this option is not set, .secrets directory will be loaded.
Sample usage
Storing CDS Stash private key
- Create a
my_stash.keyfile in our.secretsdirectory. We consider that the repository manager is namedmy_stash. - Set the following file content
$ cat my_stash.key
cds/repositoriesmanager-secrets-my_stash-privatekey
-----BEGIN PRIVATE KEY-----
A7qVvdqxevEuUkW4K+jfdkshjfjksdhfhgfhjdhf+0LYmVjPKlJGNXHDGuy5Fw/d
[...]
Lw03eHTNQghS0A==
-----END PRIVATE KEY-----
Storing CDS Github client secret
- Create a
github.keyfile in our.secretsdirectory. We consider that the repository manager is namedgithub. - Set the following file content
$ cat github.key
cds/repositoriesmanager-secrets-github-client-secret
8ed279e27119a85f990e82c7f0b895dd193c6666
Documentation
¶
Source Files
Click to show internal directories.
Click to hide internal directories.