Ocean Yet Storms
Open-Source Secrets as a Service Platform.
- Secrets HTTP API Server
- Secrets Client SDK
- Secrets Web Admin Interface
DockerFilefor easy installation
The security of Secrets is not something to be taken lightly.
Currently, I must advise you to NOT run Ocean Yet Storms in production.
I am using this library in production, so I do have a vested interest in making
oys as secure as possible. Once this project has met your ( the communities' ) defined security requirements, I will be glad to brand and label
oys as "Production Ready".
- Protects your configurations and secrets by removing them your servers
- Removes all your secrets from ENV, CLI, and local config variables
- Secrets Server + Secrets Agent
- Secrets Web Administration Interface
- Optional HTTP push configurations to Server environments
- Optional Express based Middleware for recieving remote configuration push
Three Installation Options
- Build from Source
git clone https://github.com/marak/oyscd oysnpm installnpm start
Note: You'll also need a CouchDB and Redis running on standard ports!
git clone https://github.com/marak/oyscd oysvagrant upvagrant sshcd oysnpm start
Express.js based server. See: https://github.com/bigcompany/http for additional HTTP configuration API
var oys = ;oysserver;
var oys = ;var client = oys;// gets a specific secret value by keyoys;// get multiple keys at onceoys;oys;// sets a specific secret value by key// Note: not available for read-only roles ( no writing secret values from server )
var oys = ;var oysMiddle = oys;app;
This will expose the following routes:
GET /_oys POST /_oys
These routes are capable of receiving push updates from an
oys server or client.
What's the deal with the project name?
If you actually look at the name
Ocean Yet Storms long enough, you might figure it out. If that doesn't work, try brushing up on your Robert Redford movies.