Add option for preventing rails credentials editing without environment #9

marcqualie · 2020-07-17T09:29:54Z

The rails default is to use master.key for development, then require -e for all other environments. This is odd default behaviour, but likely for backwards compatibility.

Prevent just doing rails credentials:edit and required the -e development to explicitness.

The text was updated successfully, but these errors were encountered:

marcqualie · 2020-12-06T16:13:44Z

It seems this will be pretty difficult to do without PR'ing against rails core, or overriding the rake commands that are defined

There are a couple of hard coded issues:

default_environment: nil

https://github.com/rails/rails/blob/master/railties/lib/rails/commands/credentials/credentials_command.rb#L28

This prevents diffcrypt from manually sending in the environment.

options[:environment]

https://github.com/rails/rails/blob/master/railties/lib/rails/commands/credentials/credentials_command.rb#L82

Rails assumes that if options[:environment] is not set, then the user should work with the config/credentials.yml.enc file and config/master.key

marcqualie added the enhancement New feature or request label Jul 17, 2020

marcqualie added this to the v1.0.0 milestone Oct 1, 2020

marcqualie self-assigned this Dec 18, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add option for preventing rails credentials editing without environment #9

Add option for preventing rails credentials editing without environment #9

marcqualie commented Jul 17, 2020

marcqualie commented Dec 6, 2020

Add option for preventing rails credentials editing without environment #9

Add option for preventing rails credentials editing without environment #9

Comments

marcqualie commented Jul 17, 2020

marcqualie commented Dec 6, 2020

default_environment: nil

options[:environment]