8fccf09753
Design document: https://docs.google.com/document/d/1EjiCuXoiy8DEEXe15KxVJ4iWrwogCyG113_0LdzcWzQ/edit?usp=drive_web&ouid=102644738301620637153 This is the third of multiple patchsets to support encryption and decryption in airshipctl Complete feature: https://review.opendev.org/#/c/742695/ Change-Id: Ibe1060a83d11233cccaa3d3989765968a4dbed76
21 lines
793 B
Plaintext
21 lines
793 B
Plaintext
Decrypt encrypted yaml files into plaintext files representing Kubernetes objects consisting of sensitive data.
|
|
|
|
Usage:
|
|
decrypt [flags]
|
|
|
|
Examples:
|
|
|
|
# Decrypt all encrypted files in the manifests directory.
|
|
airshipctl secret decrypt
|
|
|
|
# Decrypt encrypted file from src and write the plain text to a different dst file
|
|
airshipctl secret decrypt \
|
|
--src /tmp/manifests/target/secrets/encrypted-qualified-secret.yaml \
|
|
--dst /tmp/manifests/target/secrets/qualified-secret.yaml
|
|
|
|
|
|
Flags:
|
|
--dst string Path to the file or directory to store decrypted secrets. Defaults to src if empty.
|
|
-h, --help help for decrypt
|
|
--src string Path to the file or directory that has secrets in encrypted text that need to be decrypted. Defaults to the manifest location in airship config
|