The credentials package
This library provides a unified interface for managing secure, shared credentials. It uses Amazon Key Management Service (KMS) for master key management, locally encrypts and decrypts secrets, which are then stored in any of the supported storage backends. (Currently DynamoDB.)
The use-case is to avoid storing sensitive information such as passwords and connection strings in plaintext in places such as source control or on developers' machines. Instead you can securely administer and distribute secrets, leveraging Amazon's IAM policies for access control and permissions to ensure limited read-only permissions from production/deployed hosts. You can embed this library into projects such as web applications to securely retrieve sensitive information such as database passwords or private keys on startup.
A complementary CLI for management of credentials can be installed via credentials-cli.
You can read more about other use-cases and prerequisites here.
|Dependencies||aeson (>=0.8), amazonka (>=1.3.7), amazonka-core (>=1.3.7), amazonka-dynamodb (>=1.3.7), amazonka-kms (>=1.3.7), base (>=4.7 && <5), bytestring (>=0.10), conduit (>=1.2), cryptonite (>=0.10), exceptions (>=0.6), lens (>=4.4), memory (>=0.11), retry (>=0.7.0.1), semigroups (>=0.6), text (>=0.11), time (>=1.4), transformers (>=0.3), unordered-containers (>=0.2.5) [details]|
|Copyright||Copyright (c) 2015-2016 Brendan Hay|
|Maintainer||Brendan Hay <email@example.com>|
|Category||Network, AWS, Security|
|Source repository||head: git clone git://github.com/brendanhay/credentials.git|
|Uploaded||Wed Aug 10 11:21:58 UTC 2016 by BrendanHay|
|Downloads||65 total (6 in the last 30 days)|
|Status||Docs available [build log]
Last success reported on 2016-08-10 [all 1 reports]
For package maintainers and hackage trustees