Allow reading all secrets from separate files

rapiz1 / rathole

A lightweight and high-performance reverse proxy for NAT traversal, written in Rust. An alternative to frp and ngrok.

Apache License 2.0

9.44k stars 475 forks source link

Allow reading all secrets from separate files #264

Open akshaymankar opened 1 year ago

akshaymankar commented 1 year ago

Feature Proposed Allow reading token and local_private_key from separate files.

Use Case

Currently users have to choose between either storing the whole config file securely or assembling the config file just before starting rathole. It would be nice if the config file allows pointing to paths to secret files. In my particular case, it would help to deploy using deploy-rs and agenix without having to encrypt the whole config file in my git repository.

Kimiblock commented 4 months ago

This will be helpful with systemd's LoadCredential feature too.