Decrypt data from FILE_PATH or pipe. Encryption key should be in $WERF_SECRET_KEY or .werf_secret_key file

Syntax

werf helm secret values decrypt [FILE_PATH] [options]

Examples

  # Decrypt secret values file
  $ werf helm secret values decrypt .helm/secret-values.yaml
  mysql:
    user: root
    password: root

  # Decrypt from a pipe
  $ cat .helm/secret-values.yaml | werf helm secret decrypt
  mysql:
    user: root
    password: root

Environments

  $WERF_SECRET_KEY  Use specified secret key to extract secrets for the deploy. Recommended way to  
                    set secret key in CI-system. 
                    
                    Secret key also can be defined in files:
                    * ~/.werf/global_secret_key (globally),
                    * .werf_secret_key (per project)

Options

      --dir='':
            Change to the specified directory to find werf.yaml config
  -h, --help=false:
            help for decrypt
      --home-dir='':
            Use specified dir to store werf cache files and dirs (default $WERF_HOME or ~/.werf)
  -o, --output-file-path='':
            Write to file instead of stdout
      --tmp-dir='':
            Use specified dir to store tmp files and dirs (default $WERF_TMP_DIR or system tmp dir)