hiera-eyaml-gpg
hiera-eyaml-gpg copied to clipboard
voxpupuli
GPG encryption backend for the hiera-eyaml module
The following change https://github.com/voxpupuli/hiera-eyaml-gpg/commit/2681e995ee07636730892d2942775be5310286ab#diff-8f7a8cbc7701c45f0dbf2ab3b622433dd6cb94672da8eb7c6ea0f1bcf7b1ad5e causes problems with debuging gpg issues, since stderr is discarded, also, it leaves tmpfiles behind, since unlink is not called
I am using your software in an environment where multiple people are creating encrypted entries and I am not meant to be able to read their encrypted entries. I would...
the dependency gpgme is not [usable/installable on windows][1] and ruby_gpg can't be used for encryption. are there alternative ruby libs out there or would it be an option to do...
When editing a file using `eyaml edit` it automatically searches for `hiera-eyaml-gpg.recipients` if not specified otherwise. But when using `eyaml encrypt`, a recipients file must always be provided explicitely. Please...
Gpg 2.1 has problems if you run your gpg-agent from a directory that is more than 108 characters long: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=847206 (we had this situation on some machines because our puppet...
I'm getting this error when I try to decrypt data either via hiera command line tool or via eyaml command line tool. Thus far I don't seem to get errors...
The code at https://github.com/sihil/hiera-eyaml-gpg/blob/master/lib/hiera/backend/eyaml/encryptors/gpg.rb#L129-L138 checks whether the recipients that we are encrypting to are listed as having full validity within the web of trust. This breaks the concept of the...
I have a file foo.eyaml, that, unencrypted, looks like so: ``` yaml --- postgresql::dbs: dbx: user: u1 password: DEC(1)::GPG[Defect9advert-great]! ``` now I'd like to duplicate this, and have something like:...
I have two GPG secret keys in my keyring. I think the wrong one is listed first, so any 'encrypt' operations result in this: ``` /home/andy/.gem/ruby/1.8/gems/gpgme-2.0.2/lib/gpgme/ctx.rb:432:in `encrypt': General error (GPGME::Error::General)...
Edit mode for GPG should track existing recipients and re-encrypt to the same set of keys. This can't be done for two reasons. 1) We don't track individual blocks uniquely...
