Global, shared secrets on the server level #431
Labels
No Label
abra
abra-gandi
awaiting-feedback
backups
bug
build
ci/cd
community organising
contributing
coopcloud.tech
democracy
design
documentation
duplicate
enhancement
finance
funding
good first issue
help wanted
installer
kadabra
performance
proposal
question
recipes.coopcloud.tech
security
test
wontfix
No Milestone
No project
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: coop-cloud/organising#431
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
You configure app A at
foo_com
and app B atbar_com
. Then both need a shared secret. You generate and insert both withabra app foo_com secret insert ...
andabra app bar_com secret insert ...
but what if we could share a common secret across the two apps? It's already possible, you can reference ashared_smtp_secret_v1
between both apps if you reference this in your configuration by name. We could have aabra servers secret ...
interface for creating these? Unsure. Also, not sure how we can reference these shared secrets when there are already secrets referenced in existing configuration that are not shared. You might already have a${STACK_NAME}_smtp_pass_${SMTP_PASS_VERSION}
in a recipe config? I think those were the thoughts! /cc @moritz@3wordchant and myself ran into another group (WASHNote) needing this. They have to deploy several instances of the same app and need a shared client secret for SSO. Would greatly simplify the deployment if we can get a convention going for this technique.