Difference between revisions of "Sops --encrypt --gcp-kms"
Jump to navigation
Jump to search
| Line 14: | Line 14: | ||
* <code>[[gcloud kms keys list --location global --keyring sops]]</code> | * <code>[[gcloud kms keys list --location global --keyring sops]]</code> | ||
* <code>[[SOPS_GCP_KMS]]</code> [[environment variable]] | * <code>[[SOPS_GCP_KMS]]</code> [[environment variable]] | ||
| + | * <code>export [[SOPS_GCP_KMS]]="projects/your-project/locations/global/keyRings/your-keyring/cryptoKeys/your-sops-encryption-key"</code> | ||
* [[KMS]] | * [[KMS]] | ||
* <code>export SOPS_GCP_KMS_IDS=projects/your-project/locations/global/keyRings/sops/cryptoKeys/your-sops-encryption-key</code> | * <code>export SOPS_GCP_KMS_IDS=projects/your-project/locations/global/keyRings/sops/cryptoKeys/your-sops-encryption-key</code> | ||
Revision as of 08:00, 22 November 2022
You can define your key using --gcp-kms option or by defining a SOPS_GCP_KMS environment variable
sops --encrypt --gcp-kms sops --encrypt --gcp-kms $KMS_PATH secret.yaml > secret.enc.yaml sops --encrypt
sops --encrypt --gcp-kms only-one-file Error: no file specified
Related
sops --decrypt --gcp-kmsgcloud kms keys list --location global --keyring sopsSOPS_GCP_KMSenvironment variableexport SOPS_GCP_KMS="projects/your-project/locations/global/keyRings/your-keyring/cryptoKeys/your-sops-encryption-key"- KMS
export SOPS_GCP_KMS_IDS=projects/your-project/locations/global/keyRings/sops/cryptoKeys/your-sops-encryption-key
See also
- SOPS,
sops | sops -d | sops -e | sops exec-env | sops exec-file | sops publish | sops keyservice | sops groups | sops updatekeys | sops --help - SOPS: Secrets OPerationS,
sops, GCP,ENC[AES256_GCM, sops-secrets-operator
Advertising:
