On Tue, Jun 27, 2017 at 11:51:55AM +0100, Greg Sutcliffe wrote:
On Tue, 2017-06-27 at 11:37 +0200, Michael Moll wrote:
Hi,
While I don't like GMail, that sounds like a sensible way to go,
lacking the alternatives.
I agree, but it's just for password recovery and so forth, so that it's
not tied to a single person. I don't expect to use it for anything
else.
What are the options to use a @theforeman.org email address? Looks like
google now requires money for that where it used to be free. The
advantage would be that we can easily change the provider without
changing all accounts.
In addition to pass, Ewoud already mentioned, I was recommended
passbolt (https://www.passbolt.com) and gopass (https://www.justwatch
.com/gopass), which is a rewrite of pass.
I'll check those out, but tbh I'm wary of adding yet more 3rd-party
SaaS systems (even if they're FOSS), it's just more dependencies.
Thinking about it, a GPG encypted file somwehere on
downloads.theforeman.org would be enough, no?
Both pass and gopass operate on files/directories. Sync can happen
through git. Given there are also browser plugins you have the best of
both worlds (IMHO).
On Tue, 2017-06-27 at 06:20 -0400, Eric D Helms wrote:
Throwing yet another idea out there. Ansible Vault allows encrypting
yaml key value files and storing the encrypted file in git so that it
can be shared and stored in source control.
Maybe I'm missing something, but where's the value in Ansible here?
We're not talking about API secrets for automation, we're talking about
login details for the various services we use - i.e. for use by humans.
I agree that vault is not ideal.
--
You received this message because you are subscribed to the Google Groups
"foreman-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to foreman-dev+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
