delete ssh-private-key from yaml after processing #58
Assignees
Labels
P1
Prio 1 indicates next issue to work on
Comments
schaefi
changed the title
|
alternative the key reading can be changed such that the key is not stored in the yaml file but as a file on the external location where the yaml file itself resides. The yaml file would then only contain a reference to that location. |
|
So this is basically a question for @jeffaco
I would prefer 1. |
|
If I'm already creating a LUN with the YAML (or a DVD with the YAML), then it seems easy enough do provide the key as an extra file. It shouldn't be any harder for me, and it eliminates the cleanup issue for you (copy the YAML, don't otherwise worry about it). So my vote would be for 1 as well. |
|
👍 great I'll change the code to reflect this. Thanks |
schaefi
added
P1
schaefi
added a commit
that referenced
this issue
Jul 17, 2018
Instead of specifying a base64 encoded private ssh key string as part of the key element in the config file, we now just read a file path reference which is expected to exist on the storage location from where the config file was read. The referenced file is copied as the ssh private key of the configured user. This sets the config file free from any secret data and Fixes #58
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Once processed the ssh-private-key should be deleted from the yaml file. This imho can be done as part of the cleanup service
The text was updated successfully, but these errors were encountered: