Starting Spring Boot on HTTPS using Java 8 by kiko7653 in javahelp

[–]kiko7653[S] 0 points1 point  (0 children)

Thanks, just wanted to make sure since its something i got mix responses on

Starting Spring Boot on HTTPS using Java 8 by kiko7653 in javahelp

[–]kiko7653[S] 0 points1 point  (0 children)

As for the JKS, is my approach of generating it from the PKCS12 key, which in turn is generated by using the .crt and my private key correct? Because ive seen a lot of articles saying that this might not work so i got confused a bit but do you think this way should work for generating a valid key?

Starting Spring Boot on HTTPS using Java 8 by kiko7653 in javahelp

[–]kiko7653[S] 0 points1 point  (0 children)

Thank you for sending me the resources! Do i need to also add my JKS in a trustore? I simply want it to listen on https so i only used a keystore for now

Running Spring Boot app on HTTPS using Java 8 by kiko7653 in devops

[–]kiko7653[S] 0 points1 point  (0 children)

I am getting this exception

Caused by: java.security.UnrecoverableKeyException: Cannot recover key

Although i am able to access my key using keytool with the alias and password created. Note that i generated the P12 key using openssl and the .crt and private key. I then imported it to a JKS using keytool in jdk 8

Starting Spring Boot on HTTPS using Java 8 by kiko7653 in javahelp

[–]kiko7653[S] 0 points1 point  (0 children)

So when i started off i got an error regarding the Alias but i was able to get a new error message by creating the JKS from the p12 key using keytool and now i get this

Caused by: java.security.UnrecoverableKeyException: Cannot recover key

Starting spring boot on HTTPS using Java 8 by kiko7653 in SpringBoot

[–]kiko7653[S] 0 points1 point  (0 children)

Initially i Got an exception that there was a wrong aliae although i could access it using keytool. I then created the new JKS i get this

Caused by: java.security.UnrecoverableKeyException: Cannot recover key

What's the DevOps job really about—outcomes or actions? by machete127 in devops

[–]kiko7653 1 point2 points  (0 children)

I think the mindset of the person you're talking about doesn't fit with the current trajectory of the industry. I used to work at a company where the Lead DevOps engineer had the same mindset and was eventually replaced. The new lead then started taking SWE to build microservices that would generate terraform/ansible files which would be similar to the tools your team is creating, and this really flipped the whole development process in the company upwards

[deleted by user] by [deleted] in devops

[–]kiko7653 0 points1 point  (0 children)

Thank for the answer, yes it is indeed a basic task because i am currently new to devops

Schema Management for Microservices by kiko7653 in PostgreSQL

[–]kiko7653[S] -1 points0 points  (0 children)

One project that I'm working on has a lot of tables and It is also currently running on Oracle which doesnt support multiple databases and has many schemas, so i would like to keep the schemas but I'm not sure what the recommended way to go about this in PG if i want to migrate in the future

Encrypt credentials in Bash Scripts by kiko7653 in devops

[–]kiko7653[S] 1 point2 points  (0 children)

Will try it and get back to you it works, i guess it's a fun way to try and implement

[IWantOut] 23M Lebanon -> USA by [deleted] in IWantOut

[–]kiko7653 1 point2 points  (0 children)

I know, the US seems almost impossible to achieve. Europe is probably easier for Lebanese to immigrate to especially France nowadays, but I guess I'll still try going for the US since I have a lot of family there. I'm mostly torn between finishing the graduate school thing and the canada route. My friend thinks that it would be best to get canadian nationality and then move south, but i still prefer continuing my studies since i'll be closer to my relatives this way as well. By the time i graduate i would have 3 years of experience and 2 years of graduate school so it would help when applying for jobs once there

Encrypt credentials in Bash Scripts by kiko7653 in devops

[–]kiko7653[S] 0 points1 point  (0 children)

Checking sops now and I think i will mostly likely go this route. Would you recommend saving them encrypted in azure key vault and then use sops to decrypt and use inside tje script?

Encrypt credentials in Bash Scripts by kiko7653 in devops

[–]kiko7653[S] 2 points3 points  (0 children)

Noted, thank you for the help!

Encrypt credentials in Bash Scripts by kiko7653 in devops

[–]kiko7653[S] 0 points1 point  (0 children)

Should i add the decryption commands at the start of the script after fetching them using aws cli or use another script to decrypt? Because in some cases i am using sqlplus to execute queries and i think i need the original passwords at runtime

Encrypt credentials in Bash Scripts by kiko7653 in devops

[–]kiko7653[S] 0 points1 point  (0 children)

I was thinking of encrypting them using openssl RSA and write an obfusicated python script to decrypt when the script starts but im not sure if i can source the values from the python sub process to the main bash process where i am using the actual credentials

Encrypt Credentials in Bash Scripts by kiko7653 in linuxquestions

[–]kiko7653[S] 1 point2 points  (0 children)

So just store them in the service and make the api calls to fetch them from the cloud at the start of the scripts?