Comments (10)
I might want one store with data that is associated with a module or CI/CD project I'm running and a second store for personal items. I might want one group of data to have a longer unlock time and another set to be more secure. A single store means every secret is treated the same and maybe that isn't what I want.
from secretstore.
Really need this as well. The use case is:
- I need to have one vault protected with a password, so it will protect personal credentials and stuff unless unlocked.
- I also need one vault unprotected because of a PnP.PowerShell recommendation. https://pnp.github.io/powershell/articles/credentialmanagement.html
- preferably I would operate a separate vault for different customers
from secretstore.
Sounds like there is a need for multiple store instances. Adding PS-Committee review for visibility.
/cc: @SteveL-MSFT, @SydneyhSmith
from secretstore.
I have same king of needs with @jdhitsolutions . Also custom or third party modules will benefit if secretstore can be register multiple times with different names and instances. Then custom module can create it's own store for it's secrets.
from secretstore.
I'd like to have multiple Microsoft.PowerShell.SecretStore
SecretStore
s to segment secrets between clients.
from secretstore.
Clearly, there is some sort of interaction happening.
from secretstore.
SecretManagement allows an extension vault to be registered multiple times, because it is possible that an extension vault may support different contexts via the registration VaultParameters
. However, the SecretStore
vault currently always operates in the logged on user scope (see SecretStore documentation: https://github.com/powershell/secretstore).
So registering SecretStore
multiple times with different names just results in duplication of the same store, and doesn't make sense.
But we decided to allow this for maximum flexibility.
from secretstore.
Ok then. Again, it would help to have this clearer in the documentation. The bottom line is that a user can only have 1 microsoft.powershell.secretstore vault per user scope. That's too bad because I can imagine a situation where I might want 2 stores based on the default Microsoft.PowerShell.SecretStore. Or are you expecting that people will really be using an extension vault like LastPass?
from secretstore.
Thanks @jdhitsolutions I'd love to better understand why a user may want multiple SecretStore instances in a particular user scope, does having secretmetadata help users to organize their secrets in a way that doesnt require a second instance of the store?
Agree that we can make this more clear in the SecretStore documentation
from secretstore.
Is there a way to create independent, Microsoft.PowerShell.SecretStore
instances by supplying values to -VaultParameters
?
from secretstore.
Related Issues (20)
- Upgrading PowerShell Core version affected secrets store HOT 6
- Getting "Padding is invalid and cannot be removed" when trying to use store in local session when it was set up with remoting HOT 38
- Add better error message for failure when running under Windows built-in accounts HOT 1
- SecretStore requires Full Language mode HOT 5
- need documentation on backup/restore operation of the vaults HOT 2
- Passswordless SecretManagement
- How to use SecretStore for automatic pwd PSSession to linux? HOT 2
- Registering an additional store just creates another reference to the first store HOT 5
- There is no possibility to choose a custom file path HOT 6
- Set-SecretStoreConfiguration -Authentication None often fails HOT 7
- Request - Lock-SecretStore cmdlet HOT 1
- Windows 11 Upgrade: Store File Corruption HOT 2
- Unable to register SecretStore without supplying a password HOT 4
- Set-SecretStoreConfiguration doesn't properly support Confirm:$false HOT 4
- Unlock-SecretStore not working when using Remote-SSH connection in VsCode HOT 4
- Cannot use Set-SecretStorePassword with parameter arguments to set a new password, without an existing password HOT 1
- Updating module in pwsh 7.2
- Reset-SecretStore doesn't respect-Confirm:$false
- Set-SecretStoreConfiguration failed under Linux HOT 1
- Unlock-SecretStore randomly fails after running Reset-SecretStore
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from secretstore.