mirror of https://github.com/alrayyes/wiki.git synced 2024-11-21 19:16:23 +00:00

Ryan Kes 6a506618a5 Quartz sync: Oct 30, 2024, 6:34 PM

2024-10-30 18:34:11 +01:00

1 KiB

Raw Permalink Blame History

date	id	title
2020-11-13	e9ea6e53-c383-4b23-b90c-77cd202f8002	Ecrypted Secrets Management

Description

Encryption based feature to manage secrets.

Steps

1. Generate keys to encrypt/decrypt secret

Uses libsodium¹ and public key cryptography.

php bin/console secrets:generate-keys

2. Upload private key

Upload the private key to your remote server using SSH or any other safe means and store it in the same config/secrets/<environment>/ directory.

3. Create a new secret to store the contents

php bin/console secrets:set DATABASE_URL

Please type the secret value:
**************

[OK] Secret "DATABASE_URL" encrypted in "config/secrets/dev/"
you can commit it.

Using secret

Use this new secret as any other normal env var in your configuration files and Symfony will decrypt the value transparently when needed.

# config/packages/doctrine.yaml
doctrine:
    dbal:
        url: "%env(DATABASE_URL)%"
        # ...

Footnotes

https://download.libsodium.org/doc/ ↩︎

1 KiB Raw Permalink Blame History