Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Utility for managing "secrets" #382

Open
stevenle opened this issue Jun 26, 2024 · 0 comments
Open

Utility for managing "secrets" #382

stevenle opened this issue Jun 26, 2024 · 0 comments
Assignees
Labels
enhancement Feature request

Comments

@stevenle
Copy link
Member

Description

Root projects often make API calls to other systems via API keys. These keys need to be synced across developers and CI systems.

Root should provide some mechanism for storing and retrieving these keys in a safe and secure manner, as well as "mode" awareness (e.g. dev vs. staging vs. prod).

Once this system is set up, we should update docs to recommend a secure setup for Root CMS that involves separating API keys for development vs production, and restricting the keys to prevent unauthorized access.

@stevenle stevenle added the enhancement Feature request label Jun 26, 2024
@stevenle stevenle self-assigned this Jun 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement Feature request
Projects
None yet
Development

No branches or pull requests

1 participant