-
Notifications
You must be signed in to change notification settings - Fork 158
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Improve knife commands and order #51
Comments
👍 +1 |
Also particularly useful:
|
Looks like #50 is related to (3) ⏫ |
👍 It would be great if I could set the default mode in my knife.rb so I don't have to pass --mode client every run. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
If you run
knife -h
you can see that knife commands are usually in the form ofknife NOUN VERB
, such asknife environment list
andknife data bag show
.The current chef-vault commands are a bit disjointed with most being under
knife encrypt VAULTNAME ITEM
. One is underknife decrypt VAULTNAME ITEM VALUE
and then there isknife rotate keys
which may not be valid at the moment.I suggest we standardize all chef-vault commands as
knife vault OPERATION VAULTNAME ...
e.g.:
knife vault encrypt vault1 item --json item.json --admin gmanfunky --mode client
knife vault decrypt vault1 id,foo,bar --mode client
knife vault rotate vault1 --mode client
Or consider revamping knife use-cases more thoroughly to continue the analogy of a
data bag
command overlay. We can get rid of encrypt+decrypt sub-commands and try to match the existing knife data bag create,delete,edit,from file, show. Note that chef-vault's knife plugins go beyondknife data bag
parity to enable individual value modification.The text was updated successfully, but these errors were encountered: