4 comments

[ 0.21 ms ] story [ 17.2 ms ] thread
Do any govs do this for other software stacks? Java is so common. I remember seeing a Google one at some point.
This is so fascinating! Had no idea the gov where running Rails.
> “ We haven’t migrated to using the encrypted config/credentials.yml.enc introduced in Rails 5.2. This approach presents us with a few problems, most notably that we run our apps in Rails “production” environment in numerous places (integration, staging, production) and need different secrets for them.”

I think it’s possible to have credentials for each environment. But that’s only as of Rails 6. They may be running older versions (it seems).

https://blog.saeloun.com/2019/10/10/rails-6-adds-support-for...