chef - [chef] Re: Re: Re: Chef12: knife user show to non-admin users

First login ?
Lost password ?

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: Re: Re: Chef12: knife user show to non-admin users

From: Tiago Cruz < >
To: " " < >
Subject: [chef] Re: Re: Re: Chef12: knife user show to non-admin users
Date: Mon, 26 Jan 2015 10:37:02 -0200

Ohai again!

On Fri, Jan 23, 2015 at 11:21 PM, Steven Danna < " target="_blank"> > wrote:

To read a user's private key, you need to have the read permission on
the user itself either by being directly in the read ACE for that user
object or in a group that is in the read ACE.

And to read the user's public key, do we have some easier and way? :)

Sounds like chef-vault just need access to the public key to encrypt:

"Gem that allows you to encrypt a Chef Data Bag Item using the public keys of a list of chef nodes. This allows only those chef nodes to decrypt the encrypted values."

- https://github.com/Nordstrom/chef-vault

Many thanks!!

[chef] Chef12: knife user show to non-admin users, Tiago Cruz, 01/22/2015
- [chef] Re: Chef12: knife user show to non-admin users, Tiago Cruz, 01/23/2015
  - [chef] Re: Re: Chef12: knife user show to non-admin users, Steven Danna, 01/23/2015
    - [chef] Re: Re: Re: Chef12: knife user show to non-admin users, Tiago Cruz, 01/26/2015
      - [chef] Re: Re: Re: Re: Chef12: knife user show to non-admin users, Steven Danna, 01/26/2015
    - [chef] Re: Re: Re: Chef12: knife user show to non-admin users, Tiago Cruz, 01/26/2015