Secure Secret Storage
Registered by
justinsb
(The only S3 you need to know)
Storing crypto secrets in Keystone, which are unlocked by the action of authenticating, so that the secret is not actually stored (unencrypted) anywhere.
Those secrets can then be used by any service authenticating with Keystone, so e.g. Swift can encrypt images.
Blueprint information
- Status:
- Complete
- Approver:
- None
- Priority:
- Undefined
- Drafter:
- None
- Direction:
- Needs approval
- Assignee:
- None
- Definition:
- Obsolete
- Series goal:
- None
- Implementation:
-
Unknown
- Milestone target:
- None
- Started by
- Completed by
- Vish Ishaya
Related branches
Related bugs
Sprints
Whiteboard
good idea, but this should be proposed to keystone, not nova.
Sorry! Moved to https:/
(?)
