Skip to content

WisdomEnigma/Epislon_secrets

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Epislon_secrets ๐ŸŒ€ ๐Ÿ”‘

Pre-require software are consul, vault and terraform

Many time use different strategies to implement keys security. Most common mistake is to store keys in configuration files such as dockerfile, terraform or any such configuration file. What if developer will store keys openly? The answer is simple use vault to store keys. There is a one problem that is vault in cloud so that application will access around the world. Otherwise developer use Padd-key or content_key.

  1. Salt Password ๐Ÿท
  2. Pepper Password ๐Ÿ“ก
  3. Salt and Pepper Password ๐Ÿท
  4. Secret Shamir Shared Key ๐Ÿ“ก

Consul Server โ™ฃ๏ธ โ™ ๏ธ

Make a directory name it 'consul/data' inside consul.d directory.
Type Ctrl+Shift+T (new terminal) & type following command
   [:computer] $ consul agent -dev -enable-script-checks -node=epilson -config-dir=./consul.d

Vault Server ๐Ÿš ๐Ÿ’ฅ

    Make a directory named 'vault/data' inside vault directory.
    Type Ctrl+Shift+T (new terminal) & type following command
      [:computer:]  $ vault server -config=vault/config.hcl 
    
    Type Ctrl+Shift+T (new terminal) & type following command 
      [:web]  $ export VAULT_ADDR='http://127.0.0.1:8200'

How to Deploy โ“ ๐Ÿ‘ฝ

    https://learn.hashicorp.com/tutorials/vault/getting-started-deploy

How to Save keys in secrets (Vault) ๐Ÿ‘ฎ

Enable key value secret engine
  [:smile:]  $ vault secrets enable kv 
  [:plant:] $ vault kv put kv/consul/config/ hello=world
  [:eye:]  $ vault kv get kv/consul/config/ hello

More information please vault documentation. However I'm not a contributor of vault or any hashicorp. Perhaps vault will be better solution for keys protection.

Encryption Key ๐Ÿ”‘

$ consul keygen | tee encryption.key
$ vault kv put kv/consul/config/encryption key=$(encryption.key) ttl=1hr

Contact us ๐Ÿ‘จ

  wizdwarfs@gmail.com or follow discord @ 
  https://discord.com/channels/960060161060401172/960060161060401175  

Bit Transaction ๐Ÿ’ฐ ๐Ÿ’ธ

    37czsff3CcGvhkkJAwykQgQ2ninWum1DNL

Releases

No releases published

Packages

No packages published