The central keyring uses SecretKey encryption to securely store collection keys as files on disk. The Zebedee application configuration is now required to provide:
SecretKeyIVParameterSpec
formatted as Base64 encoded strings. collection-keyring-secrets-generator is a simple tool to generate these config
values in the required format. This tool can be used to generate secrets for developer local setup and secrets
for dev/prod environments.
From the root of the Zebedee project:
cd collection-keyring-secrets-generatorFor local dev set up:
make localAdd the output to your zebedee/run.sh file and restart Zebedee.
If you are generating config develop/production environments:
make envAdd the output to the application secrets JSON config (following existing process for app secrets).