Skip to content

age: improve identity loading, add tests, tidy#1064

Merged
ajvb merged 1 commit into
getsops:developfrom
hiddeco:age-keysource-imprv
Jun 6, 2022
Merged

age: improve identity loading, add tests, tidy#1064
ajvb merged 1 commit into
getsops:developfrom
hiddeco:age-keysource-imprv

Conversation

@hiddeco
Copy link
Copy Markdown
Member

@hiddeco hiddeco commented May 27, 2022
edited
Loading

This adds improvements to identity loading, extensive test coverage
and a general tidying of bits of code. The improvements are based on a
fork of the age key source in the Flux project's kustomize-controller,
which was built due to SOPS' limitations around identity management
without relying on runtime environment variables.

  • It introduces a ParsedIdentity type which contains a slice of age
    identities, and can be applied to the MasterKey. When applied,
    further loading of identities from the runtime environment is skipped
    for Decrypt operations. This is most useful when working with SOPS
    as an SDK, in combination with e.g. a local key service server
    implementation.
  • The Identity field has been deprecated in the MasterKey struct.
    Presence of the field was misleading, as it is not actually used.
  • Any detected identity reference is now loaded, instead of it assuming
    a priority order. This makes more sense, as age is able to work with
    a set of loaded identities. If no environment variables are defined,
    the existence of the keys.txt in the user's config directory is
    required.
  • Decrypt logs have been added to match other key sources.
  • Extensive test coverage.

@hiddeco hiddeco requested a review from ajvb May 27, 2022 10:07
hiddeco
hiddeco commented May 27, 2022
View reviewed changes
Comment thread age/keysource.go
f, err := os.Open(ageKeyFile)
if err != nil {
return nil, err
return nil, fmt.Errorf("failed to open %s file: %w", SopsAgeKeyFileEnv, err)
Copy link
Copy Markdown
Member Author

@hiddeco hiddeco May 27, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The other option would be to log any loading failure, and only error if identities == 0.

Copy link
Copy Markdown
Contributor

@ajvb ajvb Jun 6, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this way is preferable. A bit more defense around user mistakes, especially in automation using sops.

@hiddeco hiddeco mentioned this pull request Jun 2, 2022
Closed
@hiddeco
age: improve identity loading, add tests, tidy
02a866f 
This adds improvements to identity loading, extensive test coverage
and a general tidying of bits of code. The improvements are based on a
fork of the age key source in the Flux project's kustomize-controller,
which was built due to SOPS' limitations around identity management
without relying on runtime environment variables.

- It introduces a `ParsedIdentity` type which contains a slice of age
  identities, and can be applied to the `MasterKey`. When applied,
  further loading of identities from the runtime environment is skipped
  for `Decrypt` operations. This is most useful when working with SOPS
  as an SDK, in combination with e.g. a local key service server
  implementation.
- The `Identity` field has been deprecated in the `MasterKey` struct.
  Presence of the field was misleading, as it is not actually used.
- Any detected identity reference is now loaded, instead of it assuming
  a priority order. This makes more sense, as age is able to work with
  a set of loaded identities. If no environment variables are defined,
  the existence of the keys.txt in the user's config directory is
  required.
- Decrypt logs have been added to match other key sources.
- Extensive test coverage.

Signed-off-by: Hidde Beydals <hello@hidde.co>
ajvb
ajvb approved these changes Jun 6, 2022
View reviewed changes
Comment thread age/keysource.go
f, err := os.Open(ageKeyFile)
if err != nil {
return nil, err
return nil, fmt.Errorf("failed to open %s file: %w", SopsAgeKeyFileEnv, err)
Copy link
Copy Markdown
Contributor

@ajvb ajvb Jun 6, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this way is preferable. A bit more defense around user mistakes, especially in automation using sops.

@ajvb
Copy link
Copy Markdown
Contributor

ajvb commented Jun 6, 2022

This is awesome, thank you @hiddeco!

@ajvb ajvb merged commit f49164a into getsops:develop Jun 6, 2022
@hiddeco hiddeco deleted the age-keysource-imprv branch June 7, 2022 19:46
@hiddeco hiddeco added this to the v3.8.0 milestone Jul 3, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@ajvb ajvb ajvb approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

area/keyservice enhancement keyservice/age

Projects

None yet

Milestone

v3.8.0

Development

Successfully merging this pull request may close these issues.

2 participants

@hiddeco @ajvb