search

soilwise-he / development-environment-and-infrastructure

A repository containing all requirements and issues needed to set up a development and production environment for the technological activities related to the development and implementation of the SoilWise Repository
MIT License
0 stars 0 forks source link

Deploy SWR User Management and Access Control #2

Open Somakanthan opened 2 months ago

Somakanthan commented 2 months ago

User and organization management, authorization and authentication to be set up.

Definition of done:

BerkvensNick commented 3 weeks ago

for 2nd iteration

BerkvensNick commented 2 weeks ago

email from @stempler (WE): Is there are preferred safe way to share credentials within the project?

options: (answer from @stempler ) at wetransform we use gopass [1] for sharing passwords. It's not as comfortable as many cloud/web based solutions but is straightforward and transparent in how secrets are encrypted: • Secrets are stored encrypted in a git repository (e.g. GitHub) • Every potential recipient needs o access to the repository o a PGP key pair o the gopass client • The public keys of the recipients are added to gopass and used for encrypting the secrets • If there are secrets that should be available to different groups of people you need at least one repository per group gopass is a command line tool but there are browser plugins for at least Chrome and Firefox for more comfort when accessing passwords in the browser.

https://github.com/gopasspw/gopass