-
**Describe the bug/feature**
We try to generate the RSA pub key via Kapitan (`||reveal:path/to/encrypted_private_key|publickey`) from a private key that should also be created by Kapitan (`||rsa`) in…
siku4 updated
3 weeks ago
-
I've upgraded our sops binary from v3.8.1 to v3.9.0. Without changing any encrypted file, our pipeline jobs started failing due to this new error. I've put together a few steps to replicate the issue.…
-
**Describe the bug**
I set below configration for auto-unseal. And give full kms pemission to eks node role.
seal "awskms" {
region = "us-west-2"
kms_key_id = "8ecb59ea…
-
Hi,
We are using HashiCorp vault helm chart 0.8.0 and vault image 1.5.4 version. We've deployed this in EKS version 1.18 . We managed to unseal vault by manually however when tried the following AW…
-
When creating an intermediate CA using AWS KMS keys, I would like to be able to have the root and intermediate keys stored in different regions.
We would like to deploy a CAs to multiple regions, u…
-
Scenario:
I have an existing kube-aws cluster v0.9.8.
Inside the folder I have:
- credentials
- kubeconfig
- .sops.yaml
- etc
**.sops.yaml** contains (I will replace all KMS ARN in this po…
-
I'm using
`
org.zalando
spring-cloud-config-aws-kms
3.1
`
On my AWS 3, SDK2 app. But when I run my app I get
`org.springframework.beans.factory.BeanCreationExceptio…
-
## what
* Why can I add keys to chamber via geodesic but not using `aws-vault exec joany-dev-admin -- chamber write test key value` I can read fine just not write
```
Error: InvalidKeyId: Alias ar…
-
I'm using the Pulumi automation API in an application that i'm writing however I am having trouble writing tests that mock the functionality. Do mocks already exist for the pulumi automation API and i…
-
This is a strange one, I seem to only be able to decrypt files that are made by the user that created the file.
If I try and decrypt another file it fails. Even though both files are encrypted with…