Open Somakanthan opened 2 months ago
for 2nd iteration
email from @stempler (WE): Is there are preferred safe way to share credentials within the project?
options: (answer from @stempler ) at wetransform we use gopass [1] for sharing passwords. It's not as comfortable as many cloud/web based solutions but is straightforward and transparent in how secrets are encrypted: • Secrets are stored encrypted in a git repository (e.g. GitHub) • Every potential recipient needs o access to the repository o a PGP key pair o the gopass client • The public keys of the recipients are added to gopass and used for encrypting the secrets • If there are secrets that should be available to different groups of people you need at least one repository per group gopass is a command line tool but there are browser plugins for at least Chrome and Firefox for more comfort when accessing passwords in the browser.
User and organization management, authorization and authentication to be set up.
Definition of done: