Comments (4)
felixfontein
commented on June 10, 2024
Looking at the code, I'm not sure we are able to do this, since it's basically the package cloud.google.com/go/kms/apiv1 that handles all this (and potentially just hands it over to some API endpoint which takes care of it).
The error message you are quoting mentions .../cryptoKeyVersions/156, so maybe the version of the key you need is 156? I have no idea how GCP KMS identifies versions (I've never used it before), but maybe this helps :)
from sops.
Tiduster
commented on June 10, 2024
Hi @felixfontein, thanks a lot for answering and for looking at the code.
Yeah the error message was just there to illustrate my question. The "156" was indeed the version used to encrypt the data, and we forced a re-encryption on the latest version.
So, it's a magic Google library, dully noted.
Best regards.
from sops.
pierinho13
commented on June 10, 2024
/europe-west1/keyRings/sops/cryptoKeys/KEY_NAME but no information about the version.
If I disable all the old keys, sops give me the following error message:
How did you do this ?
Thank you
from sops.
Tiduster
commented on June 10, 2024
@pierinho13 : sorry, how did I do what ?
Disable all the old keys ?
By hand, in the console, unfortunately.
from sops.
Related Issues (20)
- sops command doesn't read --aws-profile flag value
- sops encryption/decryption with age key doesn't work for Python ini Files with [DEFAULT] section HOT 4
- New patch version please HOT 20
- Main project page getsops/sops never loads because of README rendering issue HOT 3
- hc-vault: Support for kubernetes auth HOT 1
- Support encryption with x.509 cert in win certmgr
- Allow to encrypt specific nodes in a file with specific keys (muliple matching creation_rules) HOT 3
- Different AWS profiles are ignored when using multiple KMS keys
- exec-env/exec-file: support "--" to separate command to run HOT 4
- Can't use docker compose and sops together HOT 3
- `sops execfile` filename should not have a random suffix appended in --no-fifo mode HOT 2
- diff shows entire file has changed HOT 1
- [question] Where is the documentation? HOT 2
- ForbiddenByRbac when using azure key vault backend with version 3.8+
- "$" in code examples in Readme prevents simple copy/paste HOT 1
- When we encrypt our values it updates all variables HOT 2
- Decrypt doesn't handle multiple files / bulk operations
- panic: runtime error: invalid memory address or nil pointer dereference when using updatekeys HOT 11
- SOPS mac_only_encrypted HOT 2
- Does sops edit exist? HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from sops.