Skip to content

dotenvx/decryption-at-access-example

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.env
.env
 
 
.env.keys
.env.keys
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
index.js
index.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Important

This repo is for purposes of demonstrating "Decryption at Access" as discussed in our whitepaper

decryption-at-access-example

Usage

  1. Run the app.
$ docker build -t daa-app . && docker run --rm -p 3000:3000 --name daa-container daa-app

  1. Visit localhost:3000 a couple times or so.

  2. Visit localhost:3000/leakylog

You will not see HELLO in the leaky env logs - demonstrating that dotenvx supports "Decryption-at-Access" avoiding the leaky log issue.

P.S. A system/framework should also be configured to not leak env to logs ideally. Most good frameworks support this out of the box. But nonetheless, if you use decryption-at-access with dotenvx get you will be protected.

About

"Decryption at Access" demo (see whitepaper)

dotenvx.com/dotenvx.pdf

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages