Skip to content

Simplifying decryption
Compare
Choose a tag to compare
@ryantm ryantm released this 01 Sep 15:55
· 176 commits to main since this release
0.12.0
9f136ec
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Features

age module

@ryantm and @jsimonetti #119:

Simplify decryption by combining the root and nonRoot secret decryption into one Activation Script and delays setting the owner and group of the secrets until after the users and groups activation scripts are completed.

  • This is a breaking change for someone that depended on the user or group of a root secret being set before the "users" and "groups" Activation Scripts run.
  • This is also a breaking change because it renames a bunch of the Activation Scripts. The new activation scripts are:
    • agenixInstall: does the decryption of secrets
    • agenixChown: changes secret users and groups
    • agenix: an Activation Script that can be depended on to ensure your Activation Script runs after all agenix operations have completed.
  • Also this fixes bug inherent to the old system's order of operations #117 reported by @jsimonetti.

Contributors

ryantm and jsimonetti
Assets 2
Loading