[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#743194: ITP: ruby-hiera-eyaml -- OpenSSL Encryption backend for Hiera

Package: wnpp
Severity: wishlist
Owner: Stig Sandbeck Mathisen <ssm@debian.org>

* Package name    : ruby-hiera-eyaml
  Version         : 2.0.1
  Upstream Author : Tom Poulton (and others)
* URL             : https://github.com/TomPoulton/hiera-eyaml
* License         : Expat
  Programming Lang: Ruby
  Description     : OpenSSL Encryption backend for Hiera

A backend for Hiera that provides per-value encryption of sensitive data within
yaml files to be used by Puppet.

Only the values are encrypted, allowing files to be swiftly reviewed without

The value of each key is encrypted individually, which means that "git diff" is

Includes a command line tool for encrypting, decrypting, editing and rotating
keys. This makes it almost as easy as using clear text files.

Basic asymmetric encryption (PKCS#7) is used by default. This does not require
any native libraries to be compiled, and it allows users without the private
key to encrypt values that the puppet master can decrypt

hiera-eyaml includes a pluggable encryption framework (e.g. GPG encryption
(hiera-eyaml-gpg) can be used if you have the need for multiple keys and easier
key rotation)

Reply to: