Skip to content

benschw/springboard

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

55 Commits

Godeps

Godeps

 
 

crypt

crypt

 
 

publisher

publisher

 
 

secrets

secrets

 
 

vendor

vendor

 
 

.gitignore

.gitignore

 
 

.travis.yml

.travis.yml

 
 

README.md

README.md

 
 

app.go

app.go

 
 

main.go

main.go

 
 

Repository files navigation

Build Status Downloads

Springboard

springboard is a cli utility to help get your secrets into vault

It leverages the transit secret backend to protect your secrets locally in a yaml formatted secrets file and facilitates pushing the secrets stored in this file into a specified path of the generic secret backend.

Since the values in your secrets file are encrypted with vault's transit backend, you can commit these files to source control. This allows you to be more deliberate about tracking and publishing the sensitive data needed to run your applications.

Usage

Install

wget http://dl.fligl.io/artifacts/springboard/springboard_linux_amd64.gz
gunzip springboard_linux_amd64.gz
chmod +x springboard_linux_amd64
mv springboard_linux_amd64 /usr/local/bin/springboard

Configure Vault

Hard coding tokens etc. is only suitable for dev. See Installing Vault for complete install instructions

export VAULT_TOKEN=springboard
export VAULT_ADDR=http://localhost:8200 

vault server -dev -dev-root-token-id=springboard

vault mount transit
Successfully mounted 'transit' at 'transit'!

vault write -f transit/keys/my-key
Success! Data written to: transit/keys/my-key

Managing Secrets with Springboard

export VAULT_TOKEN=springboard
export VAULT_ADDR=http://localhost:8200 

springboard set -s ./test.yml -t my-key foo "hello world"
springboard set -s ./test.yml -t my-key bar "hello galaxy"
springboard get -s ./test.yml -t my-key foo
hello world
springboard push -s ./test.yml -t my-key secret/my-secrets

vault read secret/my-secrets
Key                     Value
---                     -----
refresh_interval        768h0m0s
bar                     hello galaxy
foo                     hello world

Complete Usage

Usage: springboard <subcommand> -s <secrets file> -t <transit key> [args]

Subcommands:
    help                display this help screen and exit
    set <key> <value>   set/encrypt 'value' in local secrets file
    get <key>           get/decrypt 'value' from local secrets file
    push <path>         publish secrets in local secrets file to
                    'path' in vault generic secrets backend

Flags:
    -s string   secrets file
    -t string   transit key

Examples:
    springboard set -s secrets.yml -t my-key user_name supersecret
    springboard get -s secrets.yml -t my-key user_name
    springboard push -s secrets.yml -t my-key secret/my-space

github.com/benschw/springboard

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

75 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

1 tags

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages