Nostr Web Client

How do you manage secrets?

I previously relied on environmental variables, but I'm learning there are limitations with that practice

a secrets.json/yaml/file format here

and listed in .gitignore

problem solved

anything else is unnecessarily complicated unless you have more than 2 servers and frequently changing secrets

Please Login to reply.

i use an allow list pattern on my gitignores, this way only stuff i mean to be in there is caught, everything else gets ignored

been using this since i had a colleague include a node_modules in our fiat mine project a year ago

this list will pretty much keep anything useful, just don't use .txt for secret files lol

Wouldn’t the owner of the hardware have root access to the secrets.json file?

I may be misunderstanding

How is that better than environmental variables?

More flexibility