Skip to content
This repository has been archived by the owner on Aug 27, 2024. It is now read-only.
/ chef-envkey Public archive

Development repository for the envkey cookbook

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

AGS4NO/chef-envkey

BranchesTags

Repository files navigation

EnvKey Cookbook

CI

The EnvKey Cookbook provides resources for installing envkey as well as pulling and managing secret configurations on system.

Scope

This cookbook provides resources to install and interact with EnvKey configuration and secrets manager.

Requirements

  • Network accessible system for installing the EnvKey source binary

Tested Platform Support

  • Debian 10/11
  • Ubuntu 20.04/22.04
  • Rocky 8

Usage

  • Add depends 'envkey' to your cookbook's metadata.rb
  • Use the resources shipped in cookbook in a recipe, the same way you'd use core Chef resources (file, template, directory, package, etc).
# Write all application secrets to a .env file using the `envkey_source_file` helper.
envkey_source_file "/opt/chef-envkey/application.env" do
  envkey envkey_token
  out_format 'dot-env'
  owner 'root'
  group 'root'
  mode '600'
  action :create
end

# Write all application secrets to a JSON file using the `envkey_source_file` helper.
envkey_source_file "/opt/chef-envkey/application.json" do
  envkey envkey_token
  out_format 'json'
  owner 'root'
  group 'root'
  mode '600'
  action :create
end

# Write all application secrets to a PAM file using the `envkey_source_file` helper.
envkey_source_file "/opt/chef-envkey/application.pam" do
  envkey envkey_token
  out_format 'pam'
  owner 'root'
  group 'root'
  mode '600'
  action :create
end

Test Cookbooks as Examples

The cookbooks run by test-kitchen make excellent usage examples.

Those recipes are found at test/cookbooks/envkey_test/.

Resources Overview

Getting Started

Here's a quick example of installing EnvKey source and creating a .env secrets file

# Install EnvKey source from Ruby Gems
include_recipe 'envkey::default'

# Get the ENVKEY token for the applcation named 'chef-envkey' from a vault item.
envkey_token = chef_vault_item('envkey', 'keys')[node.policy_group]['chef-envkey']

# Create an application directory
directory '/opt/chef-envkey'

# Write all application secrets to a .env file using the `envkey_source_file` helper.
envkey_source_file "/opt/chef-envkey/application.#{out_format}" do
  envkey envkey_token
  out_format 'dot-env'
  owner 'root'
  group 'root'
  mode '600'
  action :create
end

About

Development repository for the envkey cookbook

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages