Skip to content

Wojciech

← MongoDB Feedback Engine

My feedback

1 result found

  1. Encrypt private_api_key in a mongocli configuration file

    4 votes

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Atlas CLI  ·  Admin →
    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback
    Signed in as (Sign out)
    Close
    Close
    An error occurred while saving the comment
    Wojciech commented  · 

    Hi

    Most of the popular CLIs give users the ability to keep their configuration in secure places. MongoDB and Atlas CLI follow similar standards:

    1. Env variable overrides
    2. Custom location of the config file.
    3. Permissions for config file access

    1. The private key can be set using environment variables:
    https://www.mongodb.com/docs/atlas/cli/stable/atlas-cli-env-variables/

    2. The most common practice is also to set your config location to be present in the secure store using `XDG_CONFIG_HOME` variable.
    For more information see: https://www.mongodb.com/docs/mongocli/stable/configure/configuration-file/

    3. File is only accessible to the current user
    ```
    -rw------- 1 me metawired 1201 Feb 21 13:40 config.toml
    ```

    For details on how to encrypt your local file system please follow the instructions for each different operating system. Setting encryption on XDG_CONFIG_HOME location will not only secure Atlas and MongoDB cli but also other CLIs like Kubectl, or GitHub.

Feedback and Knowledge Base

(thinking…)