Replies: 1 comment 1 reply
-
Interesting idea. This would, however, require chezmoi to run as a daemon and execute template files on demand, which chezmoi currently does not do. There is further complexity in that FUSE mounts work on directories, not individual files, so this would require any directory containing secrets to be exclusively managed by chezmoi. rvault seems to have the same idea. If you want to try building a prototype of this functionality, then the |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hey I thought it would be interesting if chezmoi could be set up to export file secrets on demand. For example, when git or ssh goes to open your key file chezmoi would call the password manager to export the file data, render it as a template if applicable, and return it to the opener. It would use FUSE I guess. This would be nice because you could secure the entire machine by just locking the password manager.
Beta Was this translation helpful? Give feedback.
All reactions