Comments (5)
jro, sorry for bugging you on multiple platforms but I would like to discuss something if possible.
from chamber.
I actually implemented this feature but do not really like the idea.
Making chamber do a read before it does a write changes the IAM requirements for the user doing the write, and means nobody using chamber can write if they don't have read capabilities.
We do have the use case for having one service writing secrets for all services (like auth credentials), but this service shouldn't be able to read all services other secrets.
from chamber.
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
from chamber.
This issue has been automatically marked stale
because it has not had any activity in the last 60 days. If no further activity occurs within 7 days, it will be closed. Closed does not mean "never", just that it has no momentum to get accomplished any time soon.
See CONTRIBUTING.md for more info.
from chamber.
Closing due to staleness. Closed does not mean "never", just that it has no momentum to get accomplished any time soon.
See CONTRIBUTING.md for more info.
from chamber.
Related Issues (20)
- Unable to use Multi-Region KMS keys HOT 2
- feature request: Release arm64 Docker images HOT 2
- feature request: chamber `check` command for target AWS Account HOT 1
- doesn't seem to work with path based secret that starts with a '/' HOT 1
- Isn't Chamber supposed to split Parameter Store variables ?
- Assume Role AWS HOT 1
- Feature request: `import` to support .env/dotenv files HOT 6
- Feature request: Exporting all services at once HOT 1
- Feature request: linux/arm64 docker builds on dockerhub HOT 1
- Bug: Docker builds don't seem to work, x509 signing error HOT 1
- chore: installation on darwin + Go 1.18 HOT 11
- Strings are lower-cased on `chamber write` but not `chamber import` HOT 1
- Chamber using wrong KMS Key HOT 1
- Test Issue
- Support camel-cased / snake-cased keys HOT 1
- `list` and `exec` on non-existent or inaccessible services fails silently on S3 KMS backend
- Chamber exec bash function HOT 1
- Add option to write the `value` from prompt if `value` is not provided
- Allow reading from and writing to plain text using secretsmanager backend HOT 4
- Add ability to deploy configs from the configuration file HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from chamber.