Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use a "source profile" for profiles #30

Open
jacobbednarz opened this issue Nov 24, 2020 · 1 comment
Open

Use a "source profile" for profiles #30

jacobbednarz opened this issue Nov 24, 2020 · 1 comment

Comments

@jacobbednarz
Copy link
Owner

jacobbednarz commented Nov 24, 2020
edited
Loading

It would be handy to have a source profile (such as the ability to create API tokens) which could be shared to other profiles without duplicating the credentials. Right now, if I want a read and write profile, I need to duplicate it and setup two. In practice, the ideal would look like this:

[profiles]

[profiles.create_single_use_token]
auth_type = "api_token"

[profiles.write_everything]
source_profile = "create_single_use_token"
session_duration = "15m"

[profiles.read_only]
source_profile = "create_single_use_token"
session_duration = "15m"

Running cf-vault exec read_only -- ... would not have credentials of its own stored, but instead, pull the value from the create_single_use_token item in the keychain.
@simpsora
Copy link

simpsora commented Dec 2, 2020

This would definitely help reduce duplication.

Along the same lines, adding a --source-profile argument to the add command would be very useful, especially when using --profile-template to generate a new profile.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jacobbednarz @simpsora