secretsfs

TL;DR: Access your secrets securely via a simple cat command instead of using a client.

secretsfs implements a FUSE-filesytem, that allows you to interact with secrets stored in a backend (called store) via simple readonly filesysten-interacting commands, like cat, grep etc. One such store may be Vault.

Output formats File Input/Output (FIO) are treated like plugins and can be (de-)activated in a configuration file. Out of the box implemented FIOs are:

• secretsfiles: returns plain secret on a simple cat
• templatefiles: returns on cat a with secrets rendered file (e.g. a configuration file with secrets)
• internal: mostly used for checking the state of secretsfs and debugging
• tests: disabled by default, mostly used for unit testing

Get it now on GitHub!