FAQ | This is a LIVE service | Changelog

Skip to content
Snippets Groups Projects
Select Git revision
  • renovate/all-minor-patch
  • release-it--master
  • master default protected
  • fix-dry-run-logging
  • fix/small-fix-in-readme
  • 22-destroyed-secrets
  • 19-sanctuary-rework
  • test-commit-without-mr
  • test-only-branch
  • add_version
  • kms-upgrade
  • issue-12-exit-status
  • wip-testing-junit
  • 2.8.1
  • 2.8.0
  • 2.7.0
  • 2.6.0
  • 2.5.3
  • 2.5.2
  • 2.5.1
  • 2.5.0
  • 2.3.1
  • 2.3.0
  • 2.2.0
  • 2.1.1
  • 2.1.0
  • 2.0.1
  • 2.0.0
  • 1.1.4
29 results
Search by author
  • Any Author
  • Adam Deacon Adam Deacon ad2139
  • Agustin Fernandez Agustin Fernandez af359
  • Akanimo Okure Akanimo Okure ao475
  • Alberto Morón Hernández Alberto Morón Hernández amh254
  • Andrew Vella Andrew Vella av603
  • Benjamin Woods Benjamin Woods bw509
  • Blake Dust Blake Dust bmd42
  • Brent Stewart Brent Stewart bs461
  • Dave Hart Dave Hart dkh21
  • D. Gauntley D. Gauntley dg722
  • Dmitrii Unterov Dmitrii Unterov du228
  • Dr Abraham Martin Dr Abraham Martin amc203
  • Dr Rich Wareham Dr Rich Wareham rjw57
  • Durga Devi Chintagunta Durga Devi Chintagunta dc845
  • D. Verma D. Verma dv359
  • E. Evstafiev E. Evstafiev ee345
  • E. Kirk E. Kirk ek599
  • G. Ahmadi-Assalemi G. Ahmadi-Assalemi ga429
  • **** **** group_5_bot_21db1f1ba6134002464eded084c70aac
  • **** **** group_5_bot_caeed6465e575bc5d315511d6ede517e
20 authors
  1. Feb 20, 2024
    • Dr Rich Wareham's avatar
      feat: make secret version destruction explicit · d59be715
      Dr Rich Wareham authored 
      Rather than have sanctuary default to destroying all older versions of a
secret, make the default behaviour to *keep* old versions.

Instead, add a new command `sanctuary destroy-old-versions` which can be
used to destroy older versions of secrets once an application has been
fully updated.

The reasons for this are outlined in more detail in #31.

Closes #31
      d59be715
  3. Nov 14, 2023
  5. Nov 13, 2023
    • Dr Rich Wareham's avatar
      feat(sanctuary): allow fetching 1password fields by label · 33186f29
      Dr Rich Wareham authored 
      Add a `use_field_labels` option to `op-cli-item` to allow fields to be
specified by labels as opposed to field ids. For manually created
1password secrets, this is more convenient.

Add an example of `use_field_labels` to the sanctuary docs and update
tests to test retrieving values by label as well as id.
      33186f29
    • Dr Rich Wareham's avatar
      fix(sanctuary): update docs to make policy for Google Secrets clear · a0fa4b7f
      Dr Rich Wareham authored 
      It was decided during sanctuary development to not "auto-create" secrets
since the creation of secrets, and associated IAM permissions, is better
done in tools like terraform. Sanctuary is intended to manage secret
*versions* but not the secrets themselves.

Update the docs to make this clear and add terraform examples for the
"intended approach".
      a0fa4b7f
  7. Aug 09, 2023