Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for hiera-eyaml-gkms #776

Merged
merged 2 commits into from
Mar 27, 2023
Merged

Add support for hiera-eyaml-gkms #776

merged 2 commits into from
Mar 27, 2023

Conversation

rflj
Copy link
Contributor

@rflj rflj commented Mar 25, 2023

I have noticed, that helmsman supports hiera-eyaml with only local PKCS7 keys for secrets. This PR adds support for Google Cloud KMS in hiera-eyaml.

Currently, helmsman only supports hiera-eyaml with local PKCS7 keys for secrets. This limits users who want to manage their keys differently.

I have made a code changes to add support for hiera-eyaml-gkms, which is a plugin for hiera-eyaml that extends default hiera-eyaml functionalities. This will allow users to encrypt and decrypt secrets using GKMS keys stored in GCP. Users can specify the project id, keyring and crypto-key they are referring to.

These change will add a valuable feature to helmsman allowing users to use different method and can be a starting point to include also different cloud providers for heira-eyaml.

luisdavim
luisdavim approved these changes Mar 27, 2023
View reviewed changes
Copy link
Collaborator

@luisdavim luisdavim left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks.

@luisdavim luisdavim merged commit 2ff36bf into Praqma:master Mar 27, 2023
@rflj rflj deleted the gkms_eyaml branch March 28, 2023 11:13
@rflj rflj restored the gkms_eyaml branch March 28, 2023 11:13
@rflj rflj deleted the gkms_eyaml branch March 28, 2023 11:13
mkubaczyk pushed a commit that referenced this pull request Aug 18, 2023
Add support for hiera-eyaml-gkms (#776)
3235489 
* Add support for hiera-eyaml-gkms

* Add hiera-eyaml-gkms to Dockerifle

---------

Co-authored-by: Rafal Jendraszak <rjendraszak@egnyte.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@luisdavim luisdavim luisdavim approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rflj @luisdavim