Set up a secret management scheme #26

New issue

Closed

opened 2024-11-25 09:59:13 +01:00 by fricklerhandwerk · 3 comments

fricklerhandwerk commented

2024-11-25 09:59:13 +01:00

Owner

For provisioning and managing machines we need secrets. Choose a mechanism and integrate it into our deployment and development workflows.

fricklerhandwerk added this to the Fediversity project

2024-11-25 10:02:03 +01:00

fricklerhandwerk was assigned by Niols

2024-11-25 13:48:48 +01:00

Niols self-assigned this

2024-11-25 13:48:48 +01:00

kiara added the

security

label

2025-02-11 09:45:58 +01:00

kiara commented

2025-02-11 09:46:45 +01:00

Owner

see our notes

see our [notes](https://git.fediversity.eu/Fediversity/meta/src/branch/main/secrets-management.md)

kiara added a new dependency

2025-02-11 15:55:23 +01:00

#76 Deployed services are accessible

kiara commented

2025-02-11 16:03:59 +01:00

Owner

earlier we had settled on agenix for the time being, which hard-codes encrypted secrets into our source code.
if end users are to be able to specify their admin credentials from our online panel however, we will need a different strategy.

or some cases, we may need to first decide on a way to handle secrets, c.f. https://codeberg.org/kiara/e2ed-hetzner/issues/6.

earlier we had settled on `agenix` for the time being, which hard-codes encrypted secrets into our source code. if end users are to be able to specify their admin credentials from our online panel however, we will need a different strategy. or some cases, we may need to first decide on a way to handle secrets, c.f. https://codeberg.org/kiara/e2ed-hetzner/issues/6.

fricklerhandwerk removed a dependency

2025-03-14 11:43:57 +01:00

#76 Deployed services are accessible

kiara added a new dependency

2025-04-02 16:44:02 +02:00

#291 code passes security check

kiara removed this from the Fediversity project

2025-04-14 11:13:51 +02:00

kiara added the

type: task

label

2025-05-01 11:49:20 +02:00