diff options
author | Alex Auvolat <alex@adnab.me> | 2021-01-16 20:03:00 +0100 |
---|---|---|
committer | Alex Auvolat <alex@adnab.me> | 2021-01-16 20:03:00 +0100 |
commit | 850ccbf1c7c4ebba28b1971bafae0a6ba922b7c7 (patch) | |
tree | f5f34bcc35bbe2f5d419d58767fa25b2d404701f /app/secrets.py | |
parent | d4d0b100ad39bf7ae560c2f714b75fdcf47e9a87 (diff) | |
download | infrastructure-850ccbf1c7c4ebba28b1971bafae0a6ba922b7c7.tar.gz infrastructure-850ccbf1c7c4ebba28b1971bafae0a6ba922b7c7.zip |
secretmgr.py does quite a few things!test_reorganize
Diffstat (limited to 'app/secrets.py')
-rw-r--r-- | app/secrets.py | 44 |
1 files changed, 0 insertions, 44 deletions
diff --git a/app/secrets.py b/app/secrets.py deleted file mode 100644 index 00f6016..0000000 --- a/app/secrets.py +++ /dev/null @@ -1,44 +0,0 @@ -#!/usr/bin/env python3 - -""" -TODO: this will be a utility to handle secrets in the Consul database -for the various components of the Deuxfleurs infrastructure - -Functionnalities: -- check that secrets are correctly configured -- help user fill in secrets -- create LDAP service users and fill in corresponding secrets -- maybe one day: manage SSL certificates and keys - -It uses files placed in <module_name>/secrets/* to know what secrets -it should handle. These secret files contain directives for what to do -about these secrets. - -Example directives: - -USER <description> -(a secret that must be filled in by the user) - -USER_LONG <description> -(the same, indicates that the secret fits on several lines) - -CONST <constant value> -(the secret has a constant value set here) - -CONST_LONG -<constant value, several lines> -(same) - -SERVICE_DN <service name> <service description> -(the LDAP DN of a service user) - -SERVICE_PASSWORD <service name> -(the LDAP password for the corresponding service user) - -SSL_CERT <cert name> <list of domains> -(a SSL domain for the given domains) - -SSL_KEY <cert name> -(the SSL key going with corresponding certificate) -""" - |