Skip to content

Funny-Systems-OSS/CloudSQL-Proxy-Hardening-Encryptor

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
README.zh.md
README.zh.md
 
 
encryptor.go
encryptor.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

CloudSQL Proxy Hardening Encryptor

中文版
CloudSQL Proxy Hardening: https://github.com/Funny-Systems-OSS/cloudsql-proxy-hardening

Features

  • Replace plaintext credential file with encrypted one which bound to instance ID.

Requirements

  • Go 1.15 or higher.

Installation

  1. git clone https://github.com/Funny-Systems-OSS/CloudSQL-Proxy-Hardening-Encryptor.git
  2. cd ./cloudsql-proxy-hardening
  3. go build -o ./encrypt_funny ./encrypt_funny.go

Usage

  • ./encrypt_funny <-f credential_file_path> <-i instance_ID> [-o encrypted_file_path]
    • -f:
      The json file be used to retrieve Service Account credential in cloud_sql_proxy.
    • -i:
      The instance ID which the cloud_sql_proxy_funny will be set.
    • -o:
      If provided, it is treated as the store path of encrypted file. Default to be the same place as the input with filename 'FILENAME.encrypted'.
    • -v:
      Print the version of the app and exit.

Todo

  • Encrypt credential file using OpenSSL.

About

The encryptor work with cloudsql-proxy-hardening.

Topics

security gcp google-cloud-platform cloud-sql cloudsql-proxy cloud-sql-proxy gcp-sql gcp-security gcp-cloud-sql gcp-cloud-sql-proxy cloudsql-proxy-hardening

Resources

Readme

License

Apache-2.0 license
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

1.0.0 Latest
Dec 4, 2020

Packages

No packages published

Languages