DEV Community

Discussion on: Stop Using .env Files Now!

View post

Replies for: I get it...you're like overly cautious. After years and years of dealing with hundres of sites/apps/applications I can tell you one thing. NO ON...

Collapse
 
airtonix profile image
Zenobius Jiricek • Edited

Lol mate...

You're so dead wrong on every point.

This is why nconf with it's ssm layer exists.

Collapse
 
ravavyr profile image
Ravavyr

care to elaborate or you just know one solution and that must be the best safest way to do things all the time?

Thread Thread
 
airtonix profile image
Zenobius Jiricek • Edited

use what ever solution you like as long as :

  • it doesn't allow by stander processes to spectate on your secrets
  • it allows you to remotely rotate secrets without having to restart services
  • means you can control access by service identity.

So yeah, that pretty much eliminates your one trick pony.

you don't even need nconf, i could come up with something in several languages that do this:

  • lua, metadata table
  • nodejs, proxies
  • python, metaclasses.