Perhaps I am mistaken, but it seems the point of creating both an ops and dev key in the first place was to allow the devs more liberal access to their own secrets, while still protecting anything they shouldn't have access to with our own.
It seems to me to be overly restrictive to not allow devs to encrypt new secrets with a key they already have access to.
Perhaps I am mistaken, but it seems the point of creating both an
opsanddevkey in the first place was to allow the devs more liberal access to their own secrets, while still protecting anything they shouldn't have access to with our own.It seems to me to be overly restrictive to not allow devs to encrypt new secrets with a key they already have access to.