mirror of
https://github.com/gopasspw/gopass.git
synced 2020-06-03 16:52:30 +00:00
393dd0391d
* Editing while reading Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Hyphenate sub-store Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Markup literals Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * "it's" is "it is", "its" is possessive. Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Make clear that it's the .config in $HOME Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Use commas for phrasing Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Hyphenate sub-command Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Mark bash blocks as bash Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Add some semantic linebreaks; fix code block quoting Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Improve phrasing Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Markup, commas .. Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * gopass is consistently lowercase Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com> * Add some linebreaks, improve phrasing Signed-off-by: Jean Jordaan <jean.jordaan@gmail.com>
27 lines
1.0 KiB
Markdown
27 lines
1.0 KiB
Markdown
# Using gopass as summon provider
|
|
|
|
## What is summon?
|
|
|
|
[Summon](https://cyberark.github.io/summon) is a command-line tool to inject secrets as environment variables.
|
|
It is used to execute a process and inject secrets from a separate store. Using gopass can be useful in (local) development
|
|
|
|
## Summon Provider
|
|
|
|
gopass can be used as [summon provider](https://cyberark.github.io/summon/#providers) out of the box, since it fulfills the summon provider contract.
|
|
|
|
To make use of gopass to retrieve the `test/db-password` secret, you can call summon with full provider path
|
|
|
|
summon -p /usr/local/bin/gopass --yaml 'DBPASS: !var test/db-password' bash -c 'echo $DBPASS'
|
|
|
|
or link gopass to `/usr/local/lib/summon/gopass` and just use `gopass`
|
|
|
|
summon -p gopass --yaml 'DBPASS: !var test/db-password' bash -c 'echo $DBPASS'
|
|
|
|
or export `SUMMON_PROVIDER=gopass` as default provider
|
|
|
|
summon --yaml 'DBPASS: !var test/db-password' bash -c 'echo $DBPASS'
|
|
|
|
With the appropriate `secrets.yml`, it's as easy as running
|
|
|
|
summon ./my-command-to-run
|