Secret Sharing
Rot makes sharing secrets easy and secure
Categories:
Users can easily share secrets using Rot either using a shared secrets file, or ad-hoc using a traditional GPG-style workflow:
# Using a shared secrets file
$ rot val-add mykeyring/MYSQL_ROOT comment='MySQL root password'
Value:
$ rot val-dis mykeyring/MYSQL_ROOT
{
"comment": "MySQL root password",
"modified": "2023-12-09T08:45:15.844039874-06:00",
"value": "hunter2"
}
# Using ad-hoc keys as Bob
$ rot encrypt ed25519public:MCowBQYDK2VwAyEAAYkJzjQGb+4I7bfcaq6TnkI6nWJXolUdYSQDKSZIDZU=:alice
Value:
ecdhx25519:MCowBQYDK2VwAyEAInJFvsjoY1XdTPij+mRL72NT8cUjIRA11QCFRVaoHw4=@aes128gcm:9tj1/wHN4rwC0GJG4z2/MYYPdxQhyjfyaZPwZX+tA7gaTmPOGOLLTA==:alice
# Decrypting the secret as Alice
$ rot decrypt ecdhx25519:MCowBQYDK2VwAyEAInJFvsjoY1XdTPij+mRL72NT8cUjIRA11QCFRVaoHw4=@aes128gcm:9tj1/wHN4rwC0GJG4z2/MYYPdxQhyjfyaZPwZX+tA7gaTmPOGOLLTA==:alice
Hello World!