Hacker News new | ask | show | jobs
by toomuchtodo 1446 days ago
It can either use a secret injected into an env var to bootstrap rotating ephemeral/refresh tokens or use a role provided by the environment (which can also provide short lived tokens), depending on your runtime environment and use case (on prem, cloud, k8s, etc).

Static, long lived secrets with limited governance that have no conditional access guards are weapons of mass self destruction.
1 comments
robonerd 1446 days ago
Keeping secrets in environmental variables has always seemed dodgy to me. Unless specifically cleared, they get inherited by all child processes. Maybe there are never any child processes in your application, or that could be desired behavior in some circumstances, but generally it seems like asking for trouble.
link
toomuchtodo 1446 days ago
Its safety is proportional to your isolation model. Never use env vars for secrets when you’re executing arbitrary code, for example.
link
RajT88 1446 days ago
There's also the reverse issue - if they change after your process is started.

Refreshing an environment variable that has changed is (for me) a line I won't cross. Time to write the app a different way, once that becomes a concern.

link