Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feature: add support to read certificate private keys from file-system #91

Open
hbagdi opened this issue Nov 4, 2019 · 4 comments
Open

feature: add support to read certificate private keys from file-system #91

hbagdi opened this issue Nov 4, 2019 · 4 comments
Labels
blocked feature New feature or request

Comments

@hbagdi
Copy link
Member

hbagdi commented Nov 4, 2019

Certificates are sensitive and can't be stored in plain-text.
In most use-cases, decK runs in a CI pipeline. In such a system, certificate private key and certificate can be provided to decK during runtime by CI via a file.
This avoids storing the certificate's private key in plaint-text in decK's state file.
@hbagdi hbagdi added the feature New feature or request label Nov 5, 2019
@hbagdi hbagdi modified the milestone: v0.7.0 Nov 9, 2019
@hbagdi
Copy link
Member Author

hbagdi commented Nov 9, 2019

Awaiting real user need. If there are enough users who need this,I'll develop and push this out.

@hbagdi hbagdi added the awaiting feedback Something that is waiting on users to provide feedback label Nov 10, 2019
@leolb-aphp
Copy link

Well in Gitlab CI, that could be useful. But there's more secrets than just certificates, some plugins contain sensitive tokens as configuration.

@hbagdi hbagdi added status/need-feedback Something that is waiting on users to provide feedback and removed awaiting feedback Something that is waiting on users to provide feedback status/need-feedback Something that is waiting on users to provide feedback labels Jul 14, 2020
@hbagdi hbagdi added this to the 1.3.0 milestone Jul 14, 2020
@hbagdi hbagdi removed this from the 1.3.0 milestone Feb 21, 2021
@stale
Copy link

stale bot commented Mar 20, 2021

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

@stale stale bot added the stale Will be closed unless advocated for within 7 days label Mar 20, 2021
@stale stale bot closed this as completed Mar 27, 2021
@hbagdi hbagdi reopened this Mar 29, 2021
@stale stale bot removed the stale Will be closed unless advocated for within 7 days label Mar 29, 2021
@hbagdi hbagdi self-assigned this May 15, 2021
@hbagdi hbagdi added this to the 1.8.0 milestone May 18, 2021
hbagdi added a commit that referenced this issue May 18, 2021
@hbagdi
feat: implement file template function
3c9baeb 
Fix #91
@hbagdi hbagdi mentioned this issue May 18, 2021
Closed
@mflendrich mflendrich added blocked and removed blocked labels Jun 1, 2021
@mflendrich
Copy link
Contributor

Blocked on the decision regarding security implications: #394 (review)

@hbagdi hbagdi removed their assignment Nov 8, 2021
@Tieske Tieske removed this from the 1.8.0 milestone Jul 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
blocked feature New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: implement file template function Kong/deck
4 participants
@Tieske @mflendrich @hbagdi @leolb-aphp