As a developer, I want secrets needed for the PDS to be preserved safely and not tied to any one person's personal storage

Question

As a developer, I want secrets needed for the PDS to be preserved safely and not tied to any one person's personal storage

Opened this issue a year ago · 0 comments

nutjob4life commented a year ago

Checked for duplicates

No - I haven't checked

🧑‍🔬 User Persona(s)

PDS Engineering Node devops

💪 Motivation

Right now, a number of us have created secrets (API keys, passwords, tokens) in an ad hoc fashion, and each devops has their own keyring (gpg, 1Password, etc.), and worse these sets are disjoint. That means if any one of us perhaps got hit by a bus, access to those secrets would die off too.

We need a way to share and pool our secrets while also keeping them safe from prying eyes and doling them out on a need-to-know basis.

📖 Additional Details

No response

Acceptance Criteria

Given
When I perform
Then I expect

⚙️ Engineering Details

No response