deploy-felhom-compose

admin/deploy-felhom-compose

Fork 0

Commit Graph

Author	SHA1	Message	Date
admin	44f7fd2f19	feat: encrypt sensitive values in app.yaml with AES-256-GCM Passwords and secrets from deploy fields (type: password/secret) are now encrypted at rest in app.yaml using a per-node 32-byte key. Values stored as ENC:base64(nonce+ciphertext), decrypted transparently for docker-compose and web UI. Key included in infra backup bundle for disaster recovery. Existing plaintext values migrated automatically on startup. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-23 19:12:24 +01:00

Author

SHA1

Message

Date

admin

44f7fd2f19

feat: encrypt sensitive values in app.yaml with AES-256-GCM

Passwords and secrets from deploy fields (type: password/secret) are now
encrypted at rest in app.yaml using a per-node 32-byte key. Values stored
as ENC:base64(nonce+ciphertext), decrypted transparently for docker-compose
and web UI. Key included in infra backup bundle for disaster recovery.
Existing plaintext values migrated automatically on startup.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-23 19:12:24 +01:00

1 Commits