19913d85-f662-4518-a9a1-7adc1793dfd4.png){kind=small}
what's the currently recommended way of handling s...
# announcementsd
dwall
02/03/2020, 9:06 PMwhat's the currently recommended way of handling secrets in YAML config
s
schrockn
02/03/2020, 9:07 PMWe don’t really have special support for secrets atm. If dagster weren’t in play, how would you be managing them? e.g. are you using a service to do so (Vault or similar)
d
dwall
02/03/2020, 9:08 PMgit-crypt
dwall
02/03/2020, 9:09 PMjust curious if there was something else in the works. I remember a while back there was some chatter about a special config for secrets
s
schrockn
02/03/2020, 9:11 PMwe experimented with an is_secret flag on fields in config. the intended feature would be to hide it within the config editor in dagit. however that feature wasn’t implemented and was delayed and so we ripped out is_secret.
schrockn
02/03/2020, 9:11 PMthat would be compatible with git-crypt, if my cursory reading of the feature is accurate
d
dwall
02/03/2020, 9:12 PMyep sounds it
s
schrockn
02/03/2020, 9:13 PMwhat secrets support would you want/expect?
d
dwall
02/03/2020, 9:13 PMreally just obfuscation in the UI
s
schrockn
02/03/2020, 9:13 PMgot it
m
max
02/03/2020, 9:14 PMand i think obfuscation in graphql queries
s
schrockn
02/03/2020, 9:16 PM@dwall feel free to weigh in https://github.com/dagster-io/dagster/issues/1290
👍 1
3 Views