EncryptionPolicy

Encryption policy defines how encryption should be applied via Promenade. The primary use-case for this is to encrypt genesis.sh or join.sh scripts.

Sample Document

---
schema: promenade/EncryptionPolicy/v1
metadata:
  schema: metadata/Document/v1
  name: encryption-policy
  layeringDefinition:
    abstract: false
    layer: site
  storagePolicy: cleartext
data:
  scripts:
    genesis:
      gpg: {}
...

Scripts

The genesis and join scripts can be built with sensitive content encrypted. Currently the only encryption method available is gpg, which can be enabled by setting that key to an empty dictionary.