33 lines
517 B
Plaintext
33 lines
517 B
Plaintext
# /etc/custodia/custodia.conf
|
|
[global]
|
|
debug = true
|
|
makedirs = true
|
|
|
|
[store:sqlite]
|
|
handler = SqliteStore
|
|
dburi = ${libdir}/secrets.db
|
|
table = secrets
|
|
|
|
[store:encrypted_sqlite]
|
|
handler = EncryptedOverlay
|
|
backing_store = sqlite
|
|
master_key = ${libdir}/secrets.key
|
|
master_enctype = A128CBC-HS256
|
|
autogen_master_key = true
|
|
|
|
[auth:creds]
|
|
handler = SimpleCredsAuth
|
|
uid = root
|
|
gid = root
|
|
|
|
[authz:paths]
|
|
handler = SimplePathAuthz
|
|
paths = /. /secrets
|
|
|
|
[/]
|
|
handler = Root
|
|
|
|
[/secrets]
|
|
handler = Secrets
|
|
store = encrypted_sqlite
|