Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Request - Load Credentials From Secure Sources #292

Open
tcuthbert opened this issue May 25, 2016 · 2 comments
Open

Feature Request - Load Credentials From Secure Sources #292

tcuthbert opened this issue May 25, 2016 · 2 comments
Labels
enhancement

Comments

@tcuthbert
Copy link
Contributor

Typical enterprise environments may keep credentials in a local KeePass datafile. I'd like the option to load creds from external sources such as KeePass or Vault.
@coxley
Copy link
Contributor

coxley commented May 25, 2016
edited

👍

I'm very for this as most places I've worked a local file wouldn't be good enough. I propose an authentication driver/loader. We can provide an Authentication abc driver where a user can overload it if they want and provide it via config just like netdevice loaders.

.get_credentials or something should be enforced with abc.abstractmethod to return a dict/tuple. The default driver could be an overloaded class Tacacsrc which does the current behavior.

@jathanism
Copy link
Member

We experimented a little w/ revamping Tacacsrc to use keyring. To @coxley's point, providing a plugin that is compatible w/ keyring and keyring backends would be a winner here.

See an example here: https://gist.github.com/jathanism/287ae6705d206039efdc5b1bd324f368

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jathanism @tcuthbert @coxley