Store your secret environment variables (API keys, AWS secrets etc.) with GPGME, and inject them into your current shell when needed.
- Install GPGTools on OSX and create a new key pair, if you don't have one already
- If you have more than 1 secret key in your keyring, you may want to ensure that the 'default-key' is specified in ~/.gnupg/gpg.conf
- Then install the gem:
# In your Gemfile
gem 'shellject'
And then execute:
$ bundle
Or install it yourself as:
$ gem install shellject
You may need to brew install gpgme on mac, or use your favourite package manager in linux
- Finally, run
$ shellject setup
for instructions on how to set up the shell wrapper needed for injection, and, optionally, command-line completion.
- Create a text file with the shell code you wish to have securely injected. Here's one we prepared earlier:
$ cat my-secret-stuff.sh
>
export SECRET_APIKEY=abc123
export OTHER_VAR=stuff
- Save the file contents as a shelljection:
$ shellject save --name stuff my-secret-stuff.sh
- Test the shelljection:
$ shellject load stuff
echo $SECRET_APIKEY # "abc123"
echo $OTHER_VAR # "stuff"
- REMOVE THE ORIGINAL FILE!
- Now, you can securely load the environment variables whenever you wish:
$ shellject load stuff
$ shellject --help
After checking out the repo, run bin/setup
to install dependencies. Then, run bin/console
for an interactive prompt that will allow you to experiment. Run bundle exec shellject
to use the code located in this directory, ignoring other installed copies of this gem.
To install this gem onto your local machine, run bundle exec rake install
. To release a new version, update the version number in version.rb
, and then run bundle exec rake release
to create a git tag for the version, push git commits and tags, and push the .gem
file to rubygems.org.
- Fork it ( https://github.com/sergei-matheson/shellject/fork )
- Create your feature branch (
git checkout -b my-new-feature
) - Commit your changes (
git commit -am 'Add some feature'
) - Test your changes (
bundle exec rake
) - Push to the branch (
git push origin my-new-feature
) - Create a new Pull Request