Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Encrypted-at-Rest Password or Token Storage #168

Open
sbernheim opened this issue Oct 22, 2020 · 1 comment
Open

Encrypted-at-Rest Password or Token Storage #168

sbernheim opened this issue Oct 22, 2020 · 1 comment
Labels
area/cli Related to the CLI plumbing help wanted Extra attention is needed kind/feature A new feature request priority/important Should be worked on soon. Higher priority than backlog
Milestone
0.5.1

Comments

@sbernheim
Copy link
Contributor

Proposed Feature

Store an encrypted authentication token or password so that the user need not type their password each time they run kconnect to reconnect to a cluster.

The kconnect CLI could store a private keyfile in the ~/.kconnect directory or support a configuration that refers to a Private key in a separate location (such as ~/.ssh/id_rsa) either for direct authentication to the IDP or to encrypt a token or password stored in ~/.kconnect/config.yaml or a separate credentials file.

Problem

It's annoying to have to type your password each time you reconnect to the cluster, especially when you are authenticating via an Enterprise SSO solution. The tool should support storing a longer-lived token for SSO or a password in an encrypted format for each IDP.
@sbernheim sbernheim added the kind/feature A new feature request label Oct 22, 2020
@sbernheim sbernheim changed the title Encrypted-at-Rest Password or Token Storage in ~/.kconnect Encrypted-at-Rest Password or Token Storage Oct 22, 2020
@richardcase
Copy link
Contributor

I think is a really good idea. We can also support passing via stdin.

@richardcase richardcase added area/cli Related to the CLI plumbing help wanted Extra attention is needed priority/important Should be worked on soon. Higher priority than backlog labels Nov 3, 2020
@richardcase richardcase added this to the 0.3 milestone Nov 3, 2020
@richardcase richardcase modified the milestones: 0.3, 0.5 Dec 16, 2020
@richardcase richardcase modified the milestones: 0.5, Future Feb 12, 2021
@richardcase richardcase modified the milestones: Future, 0.5.1 Feb 22, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/cli Related to the CLI plumbing help wanted Extra attention is needed kind/feature A new feature request priority/important Should be worked on soon. Higher priority than backlog
Projects
None yet
Milestone
0.5.1
Development

No branches or pull requests
2 participants
@richardcase @sbernheim