No system is 100% secure. But when malicious individuals get access to your secrets, they can harm your organization in catastrophic proportions.
How many times have you seen the email@example.com account with the password mystartup123? Don’t lie, we have all done that. We have all pushed secrets in a .env file in the git repo that all the interns and contractors can access.
Because until it’s too late, everything is ok. We always postpone setting up even the most basic security measures.
The cost when the shit hits the fan could be the survival of your company. When you are Twitter and a few celebrities accounts get hacked to scam Bitcoins, you are ok. When you are a startup with 50 clients and they see their data exposed, you are dead.
We made you a simple web interface to store your secrets in the cloud.
For each environment of each project, you can add users who get access to a token allowing them to query the environment secrets.
With his token, the user (or the server) can query our server to get all the secrets of a target environment for a target project.
If you update the secrets, your users will be able to access the new version without changing their token
If you think that a token has been compromised or if a member of your team has left, revoke the token or delete the user.
You don’t need any integration, SDK, or custom CLI. Knox works with any CI, server, dev environment, or platform able to make an https request.
An AWS secret, a public Google analytics key, or even a build target are the kind of things that your service needs. Whether you are in production or on your local machine. Get all those elements as variables for your current environment in a single call. And manage them when they change in a single place, they will be up to date for the next call.
We did not expect this one. But it appears that people are using knox for congigurations like root urls, public S3 bucket urls... Public data that differs between environments.
You don’t have to set up anything. You can be up and running in minutes. Our documentation is ONE page, not one hundred.
We make sure that everything is always running smooth for you.
You can set up the free project in minutes and use it forever. It may even be enough for your project needs.