Project activity, software launches, updates, a spotlight on #sup3rS3cretMes5age - a one-time, self-destructing messaging service, and more in this week's self-hosted recap!
J’ai enfin trouvé ce qui coinçait avec les dernières versions de #Envkey : il faut MySQL 8, MariaDB n’est pas compatible.
Envkey est un service web permettant de partager des secrets de façon sécurisée.
Intérêt : vous intégrez le module envkey de votre langage dans votre projet, un fichier .envkey pour dire quels secrets récupérer et vous n’avez plus besoin qu’une variable d’environnement ENVKEY (ça, on commite pas) pour avoir accès à vos secrets depuis votre code
#Envkey est un peu perturbant au début car il n’y a pas d’interface web. Il y a des clients desktop ou CLI et un serveur d’API.
Je pense qu’il peut être bien pratique !
NB : je l’ai trouvé en cherchant un remplaçant au #Vault d’#Hashicorp quand ils ont changé la licence. Non pas que je l’utilisais avant, mais ça fait partie de mon taf de faire de la veille technologique.
My newest weird conspiracy theory: A lot of those electronic door locks use a backend system which is called the Tuya app. It's an internet based service where you register yourself and your locks so you can "conveniently" control and lock/unlock "your" doors from everywhere. So the Tuya backend is technically able to unlock a lot of doors and it has geolocation data on all of these locks. What could possibly go wrong?
I am really excited to attend Hashiconf in San Fransico for the first time! As a long-time user of tools like Nomad, Vault, and Consul, I cannot wait to meet the teams behind the different tools and learn more about them. Nomad has powered the @bitexpert internal infrastructure for a few years now. Vault & Consul perfectly complement that stack.
Idea: An #opensource#secrets manager, with a fancy web UI like #Hashicorp#Vault, that can organize secrets by folders and deployment target (dev, staging, prod) and the CLI tool can translate those folders, keys, and values into structured YAML or JSON output in addition to environment variables. Additionally, it can import secrets into new projects with structure YAML/JSON into the format.
@giffengrabber I agree to all of the above. The fact that #Hashicorp#Vault existed and was so ubiquitous for so long has meant that other FOSS competition just hasn't matured at the same pace.
There is absolutely a business opportunity here for a fully FOSS, commercially supported key manager. If it has a clean web UI and CLI; can run on/integrate with cloud envs, kubernetes, and CI/CD environments; and supports RBAC, it'll become popular real fast.
To those who are concerned that I'm going to talk about nothing but #Hashicorp for weeks, don't be. I was harder on #RedHat, not because I think that Red Hat had done something worse (they didn't), but rather that I frankly care about Red Hat more. The shop where I work is also a Hashicorp customer, but that relationship is far more expendable, IMO, and I had hopes that some in Red Hat would hear and consider feedback where I generally don't believe that to be the case for Hashicorp.
That said, I am happy to advocate for truly #opensource forks or alternatives to #Hashicorp products and may continue to post about my own experiences with migrating to other things. Keep in mind that my use cases may be different from yours, but if you're stuck on how to replace #Terraform, #Vault, etc, speak up and let the OSS community help you find what you need. There is plenty of opportunity in the midst of this tragedy and the story of open source, free or commercial, is far from over.
Can it be, a promising truly #opensource#Hashicorp#Vault alternative? You can pay for hosting or on-prem support, but the stack appears to be fully FOSS and includes a webUI! #envkey
The KeyForge Vault Tour return is nearly upon us. In two weeks, Archons will descend upon Philadelphia, PA to take part in the first Vault Tour event since 2020! If you are unable to attend in person, don't worry! We are happy to announce that Tabletop Royale will be streaming the action
OC The Vault at Hudson Yards, Manhattan, New York City
Bad Penny Press - Issue #25 (badpennypress.substack.com)
Philadelphia Vault Tour Results and more.
Can’t Attend? Don’t Miss the Philadelphia Vault Tour Stream! (keyforging.com)
The KeyForge Vault Tour return is nearly upon us. In two weeks, Archons will descend upon Philadelphia, PA to take part in the first Vault Tour event since 2020! If you are unable to attend in person, don't worry! We are happy to announce that Tabletop Royale will be streaming the action