Endly on its core uses SSH and other system/cloud service requiring credentials. These service accept either an URL or just a name of filename without extension from ~/.secret/ folder
Endly uses Credentail Config stored in $HOME/.secret/ folder, it uses blowfish encrypted password when created by "endly -c option"
Endly service was design in a way to hide user secrets, for example, if sudo access is needed, endly will output sudo in the execution event log and screen rather actual password.
To generate credentials file to enable endly exec service to run on localhost:
Provide a username and password to login to your box.
mkdir $HOME/.secret
ssh-keygen -b 1024 -t rsa -f id_rsa -P "" -f $HOME/.secret/id_rsa
touch ~/.ssh/authorized_keys
cat $HOME/.secret/id_rsa.pub >> ~/.ssh/authorized_keys
chmod u+w authorized_keys
endly -c=localhost -k=~/.secret/id_rsa
Verify that secret file were created
cat ~/.secret/localhost.json
Now you can use ${env.HOME}./secret/localhost.json as you localhost credentials.
On OSX make sure SSH login is enabled.
(BigQuery, Google Storage, GCE)
In the google cloud console
- Select project
- Select API and Services
- Enable Big Query API
- Select API and Services/Credentials to create Service account key.
- Use Default App Engine service account and JSON key type
- Copy created credentials to ~/.secret/bq.json
Create a JSON file with the following details in the ~/.secret/aws.json
{
"Region":"REGION",
"Key":"KEY",
"Secret":"SECRET"
}endly -c=mysqlProvide username root, and your password
endly -c=pgProvide username root, and your password