Project

omnivault

0.01
No release in over 3 years
Low commit activity in last 3 years
omnivaultaptible/omnivaultHomepageDocumentationSource CodeBug Tracker
Abstract password vault for multiple providers
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
16,181
Stars
9
Forks
4
Watchers
6
 Releases
Current version
0.2.0
Total releases
4
First release
2015-04-13
Latest release
2017-03-06
 Issues
Open Issues
2
Closed Issues
0
Total Issues
2
Issue Closure Rate
0%
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
1
Merged Pull Requests
3
Pull Request Acceptance Rate
75%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2016-09-03
Reverse Dependencies
0

 Dependencies

Development

aptible-tasks
>= 0
aws-sdk
~> 2
aws-sdk-v1
>= 0
bundler
>= 0
pry
>= 0
rake
>= 0
rspec
~> 2.0

Runtime

pws
>= 0
thor
>= 0
 Project Readme

Omnivault

Gem Version Build Status Dependency Status

A Ruby library and CLI tool to abstract keychain functionality for storing and retrieiving arbitrary secrets from a variety of password vaults.

Omnivault supports simple key-value secret retrieval with the following password vaults:

  • Apple OS X Keychain
  • pws (a CLI-based vault)

Additionally, it supports automatic credential setup for the following libraries:

  • AWS Ruby SDK (aws-sdk-v1, aws-sdk)

Installation and Usage (CLI Tool)

To install for CLI usage, simply run gem install omnivault and then refer to omnivault help for usage:

Commands:
  omnivault env [-v VAULT]                                # Print secret values from vault as source-able ENV variables
  omnivault exec [-v VAULT] COMMAND                       # Execute command with secret values as ENV variables
  omnivault help [COMMAND]                                # Describe available commands or one specific command
  omnivault ls [-v VAULT]                                 # List all secret keys from vault
  omnivault set [-v VAULT] KEY1=value1 [KEY2=value2 ...]  # Set one or more secret values in vault
  omnivault unset [-v VAULT] KEY1 [KEY2 ...]              # Unset one or more secret values in vault

Installation (Library)

Add the following line(s) to your application's Gemfile.

gem 'omnivault'

And then run bundle install.

Usage (Library)

To initialize the the Omnivault, run:

omnivault = Omnivault.autodetect

This will determine an appropriate provider using the following logic:

  • If the ENV variable VAULT is set, it will use that provider, i.e.,
    • Apple Keychain for VAULT=apple
    • PWS for VAULT=pws
  • If no ENV variable is set, it will try to use Apple Keychain first on OS X, then PWS. If not on OS X only PWS will be used.

Then, to use Omnivault, you can:

omnivault.store('foo', 'bar')
omnivault.entries
# => { "foo" => "bar" }
omnivault.fetch("foo")
# => "bar"

AWS Setup

Omnivault provides a configure_aws! method, which can be used to automatically load credentials in the context of the AWS SDK for Ruby.

omnivault.configure_aws!

To use this feature, you'll need to set the AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY secrets in Omnivault:

omnivault set AWS_ACCESS_KEY_ID=... AWS_SECRET_ACCESS_KEY=...

Contributing

  1. Fork the project.
  2. Commit your changes, with specs.
  3. Ensure that your code passes specs (rake spec) and meets Aptible's Ruby style guide (rake rubocop).
  4. Create a new pull request on GitHub.

Copyright and License

MIT License, see LICENSE for details.

Copyright (c) 2019 Aptible, Frank Macreery, and contributors.