Simple CLI tool to handle encrypted secrets, heavily inspired in Symfony Secrets.
With undisclosed you can set and store your credentials encrypted, and dump it in plain whenever you want.
Execute undisclosed init to create a default config file template and the folder to store the keys.
With undisclosed generate-keypair you will generate your keypair. It will be used to encrypt all your data.
$ undisclosed generate-keypair
┌─────────┬───────────┬────────────────────────────────────────────┬───────────────────────────┐
│ (index) │ type │ path │ value │
├─────────┼───────────┼────────────────────────────────────────────┼───────────────────────────┤
│ 0 │ 'public' │ '/Users/mangel/Workspace/test/public.pem' │ '-----BEGIN RSA PUBLI...' │
│ 1 │ 'private' │ '/Users/mangel/Workspace/test/private.pem' │ '-----BEGIN RSA PRIVA...' │
└─────────┴───────────┴────────────────────────────────────────────┴───────────────────────────┘
With undisclosed list you can list the secrets you previously stored.
$ undisclosed list
┌─────────┬────────┬───────────────────────────┐
│ (index) │ key │ value │
├─────────┼────────┼───────────────────────────┤
│ 0 │ 'USER' │ 'XdnN70UTz1adJZIVUcb1...' │
└─────────┴────────┴───────────────────────────┘
With undisclosed set KEY value you can store a new secret or update an existing one.
$ undisclosed set USER root
┌─────────┬────────┬───────────────────────────┐
│ (index) │ key │ value │
├─────────┼────────┼───────────────────────────┤
│ 0 │ 'USER' │ 'XdnN70UTz1adJZIVUcb1...' │
└─────────┴────────┴───────────────────────────┘
With undisclosed get KEY you can retrieve a secret value.
$ undisclosed get USER
┌─────────┬────────┬────────┐
│ (index) │ key │ value │
├─────────┼────────┼────────┤
│ 0 │ 'USER' │ 'root' │
└─────────┴────────┴────────┘
With undisclosed delete KEY you can delete a secret.
$ undisclosed delete USER
Secret deleted.
With undisclosed dump you can dump all the stored secrets decrypted into a .env file.