project is abandoned and can be treated just as proof of concept.
People are often afraid of gpg
and asymmetric cryptography.
gpg
key-server doesn't validate a key ownership.
-
If you want to share secret with your teammates, but your company has no procedures
-
If you want to share secrets in secure way and use managed key registry. Here we are!
LIME-COMB
is set of tools and services designed to make sharing secrets easy.
Given solution aims to be an easy,
still safe solution for everyone(including non technical staff)
Lime-comb is basically public key registry and set of the gpg based tools.
Public keys are stored in the database.
End user can easily import existing public key and encrypt message.
No gpg
nor cryptography knowledge required.
We believe we shouldn't reinvent wheel. Lime-comb key registry is secured with authorization from google oauth. We believe smart people provides good solutions and we should utilize them.
What was the syntax for gpg
? Should I use base64
or armor mode
?
Can I trust Bob uploaded this particular key?
It's not your problem anymore, we will do it for you.
The only thing you need to know is Bobs(receiver) email.
Just type message and receiver and confirm you are not a machine. Easy like that.
We are offering flexible solution with 2 main default profiles.
- Locked (keeps private key just locally)
- Glass-break (store private key and password in registry. This data are accessible just for given user)
Many other configuration option can be adjusted by an user
Use pip
. Simple like that!
python3 -m pip install lime-comb
python3.7+
gpg
Deployment is done via cloud build jobs which are triggered by GitHub repository event. Infra is managed by pulumi scripts.
Just raise a pull request on GitHub.
leave a star or raise an issue on GutHub.