secretsfs
TL;DR: Access your secrets securely via a simple cat
command instead of using a client.
secretsfs implements a FUSE-filesytem, that allows you to interact with secrets stored in a backend (called store) via simple readonly filesysten-interacting commands, like cat, grep etc. One such store may be Vault.
Output formats File Input/Output (FIO) are treated like plugins and can be (de-)activated in a configuration file. Out of the box implemented FIOs are:
- secretsfiles: returns plain secret on a simple
cat
- templatefiles: returns on
cat
a with secrets rendered file (e.g. a configuration file with secrets) - internal: mostly used for checking the state of secretsfs and debugging
- tests: disabled by default, mostly used for unit testing
Get it now on GitHub!