I get the point, but donât forget those âsecretsâ are SHA256 hashes. Not really reversible.
Comment on đĄď¸ uSentry - Identity & Access Management
Vendetta9076@sh.itjust.works â¨3⊠â¨weeks⊠ago
I feel like committing secrets to a config file instead of .env is a terrible idea. Thats being said this is really useful Iâm sure.
TCB13@lemmy.world â¨3⊠â¨weeks⊠ago
Vendetta9076@sh.itjust.works â¨3⊠â¨weeks⊠ago
The issue isnât that. The issue is its a config folder and a lot of people back their configs up to things like github.
TCB13@lemmy.world â¨3⊠â¨weeks⊠ago
You can backup the entire file then. I get your point, but it also seems like youâre referring to some container-based approach where you would place this inside a container and then mount the config file to some path. While some people might like that approach, that kind of goes against the original idea here, I didnât want to run yet another instance of nginx for auth, nor another php-fpm - the ideia was simply to use this on a low power device , no containers, no overhead of duplicate webservers and PHP, just a single nginx running a couple of apps on the same php-fpm alongside this.
Vendetta9076@sh.itjust.works â¨3⊠â¨weeks⊠ago
I think youre misunderstanding my point but thats okay. Its not for me but as a thing itself its really impressive and you should be proud to have written it. Iâm sure others will find great use in it :)
Xanza@lemm.ee â¨3⊠â¨weeks⊠ago
The entire point of
.envfiles are to separate secrets from code. Its specifically the usage for which they were created.Vendetta9076@sh.itjust.works â¨3⊠â¨weeks⊠ago
Yes?
Are we misunderstanding each other?
Xanza@lemm.ee â¨3⊠â¨weeks⊠ago
We are. I read
I feel like committing secrets to a config file instead of .env is a terrible idea.asI feel like committing secrets to a .env is a terrible idea..Muh bad.
Vendetta9076@sh.itjust.works â¨3⊠â¨weeks⊠ago
All good brother :)