Open astrobokonon opened 4 years ago
Thinking about using https://pypi.org/project/keyring/ but with https://pypi.org/project/keyrings.cryptfile/ as the backend since I doubt I'll have a good dbus experience in the various flavor of containers I run?
Honestly an environment variable or an .env file is seeming way easier than any of these shenanigans. But I'll probably defer this a little longer since it's a wider-reaching problem.
A continual thorn in my side. I just need to figure out how I want to do this, and then just do it.
A previous cobbled-together solution I came up with for DataServants has the passwords in another file that is then associated with the main config file. But I hate that. I really, really, really just need to figure out whether I want to put the credentials in environment variables that are pulled in for each container (ugly for Alfred with his many machines to check) or if I do encryption and just keep the keyfile secret/uncommitted.
The second seems sensible, but I'm no security expert.