This sets up sops for our self-host keyserver config.
secrets are stored in keyserver_secrets.json
Details
Details
- Reviewers
bartek varun - Commits
- rCOMM4f8c01a99fa0: [terraform] configure intial sops setup
terraform apply and outputted secrets from keyserver_secrets.json like so:
output "my_secret" { value = nonsensitive(local.secrets["mariaDB"]) }
Depends on D12277
Diff Detail
Diff Detail
- Repository
- rCOMM Comm
- Lint
No Lint Coverage - Unit
No Test Coverage
Event Timeline
Comment Actions
Not sure if using SOPS isn't an overkill for self-hosted keyservers (sops main advantages are for secrets stored in git repos), but let's keep it for now, we can simplify it later by e.g. using gitignored plaintext env files or terraform variable files.