[OT] Testing and credentials best practices?
Roy Smith
roy at panix.com
Sun Apr 20 17:32:31 EDT 2014
In article <267e12d3-ea01-4886-bfa7-5c7270adbe92 at googlegroups.com>,
Miki Tebeka <miki.tebeka at gmail.com> wrote:
> Greetings,
>
> How do you deal with tests (both on dev machine and Jenkins) that need
> credentials (such as AWS keys)?. I know of the following methods:
>
> 1. Test user with known (stored in source control) limited credentials
> 2. ~/.secrets (or any other known location) RC file which is not in source
> control
> 3. Credentials service (such as ZooKeeper) accessed only from VPN
> 4. Credentials pre user encrypted (gpg) and stored in source control
>
> What method are you using? Are there any best practices in the subject?
We've been looking at using etcd to store credentials (essentially the
same solution as zookeeper). It seems like the right way to go.
So far, my impression of etcd is "neat, promising, not ready for prime
time yet" (to be fair, the etcd folks don't claim it's stable yet).
ZooKeeper at least has the advantage of being in production use for a
long time, so it should be pretty bullet-proof.
More information about the Python-list
mailing list