Simple Dynamic Secrets Sharing #104

Closed
opened 2024-07-10 03:31:45 +03:00 by max · 1 comment
Owner

Basic workflow:

  • A provider service has a secret key and wants a consumer service to use it
  • The provider service encrypts the secret key with age (SSH host key of the consumer) and puts the age-encrypted file into Consul KV
  • The consumer service waits for the encrypted file to appear in Consul KV, downloads and decrypts it
  • The consumer service can now use the secret key to talk to the provider service
Basic workflow: - A provider service has a secret key and wants a consumer service to use it - The provider service encrypts the secret key with age (SSH host key of the consumer) and puts the age-encrypted file into Consul KV - The consumer service waits for the encrypted file to appear in Consul KV, downloads and decrypts it - The consumer service can now use the secret key to talk to the provider service
max added this to the Frangiclave project 2024-07-10 03:31:45 +03:00
Author
Owner

Implemented as Locksmith

Implemented as Locksmith
max closed this issue 2024-07-11 02:05:03 +03:00
Sign in to join this conversation.
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: privatevoid.net/depot#104
No description provided.