https://github.com/hsm207/secure_credentials
How to commit private information using cloud services
https://github.com/hsm207/secure_credentials
cloud-computing security-tools
Last synced: 7 months ago
JSON representation
How to commit private information using cloud services
- Host: GitHub
- URL: https://github.com/hsm207/secure_credentials
- Owner: hsm207
- License: gpl-3.0
- Created: 2020-02-23T13:49:44.000Z (over 5 years ago)
- Default Branch: master
- Last Pushed: 2020-02-24T17:26:56.000Z (over 5 years ago)
- Last Synced: 2025-01-14T11:14:30.643Z (9 months ago)
- Topics: cloud-computing, security-tools
- Language: Python
- Homepage:
- Size: 17.6 KB
- Stars: 0
- Watchers: 3
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Introduction
This repository contains code to accompany my Medium blog post titled [How To Commit Your Cloud Credentials To Version Control Systems](https://medium.com/towards-artificial-intelligence/how-to-safely-commit-your-aws-credentials-to-github-21d3bf7771e7).
It makes use of [sops](https://github.com/mozilla/sops) and AWS KMS (sops works with other cloud providers too).
# Usage
The [Dockerfile](Dockerfile) is meant to help newcomers to sops to quickly get started using it with AWS KMS.
To get started:
1. Create a customer managed key (CMK) in AWS CMK
2. Create an IAM user and assign it the permission to use the CMK for file encryption and decryption
2. Update line 13 in the [Dockerfile](Dockerfile) with the CMK's ARN
3. Update [credentials](credentials) with the credentials of the IAM user created in step 2
4. Execute:
```shell script
docker build -t secure_credentials:dev . && \
docker run -v $(pwd):/secure_credentials \
--name secure_credentials \
-it \
--rm \
secure_credentials:dev bash
```
Follow along the blog post to learn how to encrypt and decrypt files using sops.