dploy
dploy copied to clipboard
lucasmotta
Deployment with SSH Key Without Setting Passphrase
I am trying to deploy on a server through SSH using my private key. This private key is encrypted by a passphrase. However, I would like to avoid hardcoding the passphrase in the dploy.yaml file for obvious security reasons.
If I don't add the passphrase key in the config file, or if I add it but leave it empty, dploy doesn't prompt me for the passphrase and tries to decrypt the key without passphrase or with an empty string.
Is there a way to force dploy to ask for the passphrase or is hardcoding it in the config file the only way to get it working?
Hey @julien731 - I know it's been a while, but the new version of dploy that is about to be releases will support custom configs through the CLI. So you set your passphrase when running dploy, like this:
dploy stage --options.passphrase=yoursecretpassphrase
If you want to give it a try, check the beta branch: https://github.com/LeanMeanFightingMachine/dploy/tree/v2-beta I've rewritten it from scratch and added more features, including this one!
I'd love to test this feature. If we've installed 1.2.0 via npm, how to we switch to the v2-beta?
@lucasmotta dploy stage --options.passphrase=yoursecretpassphrase is also no option as one surely doesn't want one's pk password in the command history...
Better just ask for it like if using user without password setting.
I would also love to see this feature implemented (dploy asking for passphrase in prompt).
