Hi everyone, I was perusing through Conjur and Vault documentation, since I’m starting to think that learning a secret-management system might be a worthwhile investment with the app secrets and SSH keys and CA certificates around.

I was wondering, what do you use in your network? I plan to take a look at Teleport’s documentation too, was curious about what the community uses at home.

Thanks!

  • @MigratingtoLemmyOP
    link
    English
    111 months ago

    Does pass have an API I can use in Ansbile/Terraform/IaC tools?

    • @[email protected]
      link
      fedilink
      English
      111 months ago

      It’s a cli tool, so you can call it within another call using dollar sign syntax

      terraform apply --var "myvalue=$(pass path/to/value)"
      
      • @MigratingtoLemmyOP
        link
        English
        111 months ago

        Could you tell me how I can use pass whilst authenticating an application with something akin to identities? I.e. I need application 1 to be able to access a certain key but I don’t want application 2 to be able to do so. How would I be able to restrict access to keys?

        A bit about the scenario: I will be running this in a VM which will act as my central password suite on the network, which I will access using a password/keys.