Simo Sorce
Simo Sorce
Thanks, will take a look and start implementing what I can.
So let me try to give you pointers I can figure out right away: - Ansible Integration: if you can use curl/wget you can get secrets, so I would say...
What you want is metadata that will allow you to write something into Custodia, but then allow retrieval only by a different entity ?
Writing an ACL plugin is easy enough, defininig the rules on who/how/what can access the secrets is another matter. What do you mean by "physical access" ?
Sorry I find this spec file, messy, ugly and confusing, but ok. /lgtm
I think just listing multiple ids is fine. If both cred_quid and cred_egid are set then at least one of the uids and at least one of the gids must...
improve SimpleCredsAuth please
Yes, there should be no need for any special configuration. How do you want to document it ?
technically you can use xmlsec1 with other crypto libraries, if a patch were contributed to change this it would be accepted.