Project

dynamo_secret

0.0
No commit activity in last 3 years
No release in over 3 years
dynamo_secretrbayerl/dynamo_secretHomepageDocumentationSource CodeBug Tracker
Encrypt and decrypt secrets stored in DynamoDB with GPG and/or KMS
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
6,005
Stars
0
Forks
0
Watchers
1
 Releases
Current version
0.1.2
Total releases
3
First release
2017-10-21
Latest release
2017-10-22
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2017-10-22
Reverse Dependencies
0

 Dependencies

Development

bump
>= 0
rake
>= 0
rspec
>= 0
rubocop
>= 0
single_cov
>= 0

Runtime

aws-sdk-dynamodb
>= 0
aws-sdk-iam
>= 0
aws-sdk-kms
>= 0
gpgme
>= 0
highline
>= 0
 Project Readme

dynamo_secret

Ruby gem for encrypting secrets with GnuPG and/or KMS and storing them in DynamoDB.

Usage

dynamo_secret can be used to store, fetch, update, and delete encrypted information. It is intended to be used as a remote password store, but could be used for other things as well. Data is organized by site, and can contain almost anything. Usage:

dynamo_secret -l|--list
dynamo_secret -i|--init   [-k|--kms]
dynamo_secret -g|--get    [site] [key1,key2,...]
dynamo_secret -a|--add    [site] [key1,key2,...] [val1,val2,...]
dynamo_secret -u|--update [site] [key1,key2,...] [val1,val2,...]
dynamo_secret -d|--delete [site]

List

dynamo_secret -l will list all of the sites stored in the DynamoDB table.

Init

Before storing secrets the table needs to be created. dynamo_secret -i [-k] will create the table. If the optional -k flag is supplied a KMS key will also be created. KMS keys do not qualify for free tier usage and will cost $1 or more per month.

Get

dynamo_secret -g|--get [site] [key1,key2,...] will retreive and decrypt information stored under the specified site. Specific fields (keys) can also be specified if not all fields are wanted or required.

Add

dynamo_secret -a|--add [site] [key1,key2,...] [val1,val2,...] stores key value pairs under site. Values may be omitted to keep them out of history files, or - may be used for extra sensitive secrets.

Update

dynamo_secret -u|--update works exactly like --put, but it replaces the specified key value pairs while keeping anything else.

Delete

dynamo_secret -d|--delete [site] completely removes all records under site from the DynamoDB table.