hdm icon indicating copy to clipboard operation
hdm copied to clipboard
verified publisher icon example42

Manage eyaml data

Open tuxmea opened this issue 4 years ago • 0 comments

  • show encrypted values as is. add a button on the data to show plain text. (decrypt)
  • if eyaml is configured: add an encrypt button to save encrypted data. (encrypt)

Prepared testing environment (eyaml). Provide a config switch, if we want to decrypt values in hdm.conf.

EYaml is configured in hiera.yaml file, by setting the lookup_key to eyaml_lookup and specifying options for private and public key.

If the private key is readable by HDM: provide the option to "decrypt" the data.

Preparation for storing data:

  • allow users to encrypt data.

If a user decrypts a value, sets a new one and wants to save it in plain text: provide a warning, and the user must confirm to store the value.

Please consider that we might have usermanagement RBAC where we want to limit users to decrypt values.

tuxmea avatar Apr 26 '21 12:04 tuxmea