Reading a secret back?

59 views
Skip to first unread message

Albert So

unread,
Aug 15, 2016, 6:57:58 PM8/15/16
to keywhiz-users
Hi all,

I have a n00b question here. 

I've looked at the docs and examples but cannot seem to find a way to read a secret back. Did I miss it in the docs somehow? 

I don't see any command to do this in the CLI. I've tried list and describe. 

The GET call to /secret/${secretname} seems to be the closest but the secret in the response seems encrypted or is a hash:

$ curl --cert ./server/src/test/resources/clients/client.p12:ponies -k -X GET --header "Accept: application/json" "https://localhost:4444/secret/mySecretName"
{"name":"mySecretName","secret":"YWJjZGVmZwo=","secretLength":8,"creationDate":"2016-08-15T21:39:43.000Z"}


Thanks in advance,
Albert

Matthew McPherrin

unread,
Aug 15, 2016, 7:03:28 PM8/15/16
to Albert So, keywhiz-users
It's just base64 encoded.   base64 decode YWJjZGVmZwo= to get abcdefg

--
You received this message because you are subscribed to the Google Groups "keywhiz-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to keywhiz-users+unsubscribe@googlegroups.com.
To post to this group, send email to keywhi...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/keywhiz-users/581016de-c110-4b7c-bb31-87a5d32ef8e8%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Albert So

unread,
Aug 15, 2016, 7:12:32 PM8/15/16
to keywhiz-users, kin...@gmail.com
Ahhh, thanks! 

It would be good to put this in the top level examples somewhere.


On Monday, August 15, 2016 at 4:03:28 PM UTC-7, Matthew McPherrin wrote:
It's just base64 encoded.   base64 decode YWJjZGVmZwo= to get abcdefg
On Mon, Aug 15, 2016 at 3:57 PM, Albert So <kin...@gmail.com> wrote:
Hi all,

I have a n00b question here. 

I've looked at the docs and examples but cannot seem to find a way to read a secret back. Did I miss it in the docs somehow? 

I don't see any command to do this in the CLI. I've tried list and describe. 

The GET call to /secret/${secretname} seems to be the closest but the secret in the response seems encrypted or is a hash:

$ curl --cert ./server/src/test/resources/clients/client.p12:ponies -k -X GET --header "Accept: application/json" "https://localhost:4444/secret/mySecretName"
{"name":"mySecretName","secret":"YWJjZGVmZwo=","secretLength":8,"creationDate":"2016-08-15T21:39:43.000Z"}


Thanks in advance,
Albert

--
You received this message because you are subscribed to the Google Groups "keywhiz-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to keywhiz-user...@googlegroups.com.
Reply all
Reply to author
Forward
0 new messages