Do you have a comparison of this to open source vault? The biggest issue with secret managers isn’t storage though its authenticating clients. Does this support auth via IAM, k8s, okta, ldap, sso providers?
I've been using this product for a month now, in production for my startup. It's been helpful with my secrets but my favorite use case is using it instead for endpoint storage for service discovery across my dev, staging, and prod phases. I really like the flag-based approach to jump easily between dev, staging, and prod without any code changes. Also works nicely with my PaaS (Zeet), and the Garnet team has been impressively responsive with integration guides and feature requests. It's worth checking out.
Managing secrets is critical in this day and age for individuals and organizations of all kinds and sizes. Many developers currently find it painful to manage their app configurations and secrets, and this pain grows with stack complexity and team size. This makes building and deploying manual, time-consuming and insecure.<p>Today there are great solutions in this space, however, from our personal experience as developers, we have felt that existing solutions are either:<p>1) Too complex to set up and operate for the everyday developer<p>2) Tied to cloud-providers and don’t work well cross-platform<p>3) Pure SaaS solutions don’t play well with trust and reliability<p>Because of this, engineers end up writing custom wrappers around existing tools to solve developer experience and integrations with their stack.<p>Garnet is a developer-focused, open-source secrets manager which can be easily self-hosted on your own infrastructure. We aim to provide a single source of truth for configs and secrets across your tools, apps, environments and teams while delivering a great developer-experience through features like rich audit logs and versioning, granular access controls, notifications and native integrations with existing secrets and config management systems.<p>Garnet wants to solve this problem from a developer-first point of view, and we want to work with the community to elevate configurations as a first-class citizen in a developer’s workflow.<p>We’re actively looking for feedback and contributions! Please star and check out our GitHub repo to read more on what we’re building: <a href="https://github.com/garnet-labs/garnet-oss" rel="nofollow">https://github.com/garnet-labs/garnet-oss</a>
Creative concept in the domain of DevOps is found at Garnet. I have easily configured my API. The experts deeply explained things really well. Being provided the things on single sign-on has reducing the developer efforts. Multiple instance creation for single user is much appreciated. Moreover, I would recommend to all developers to must taste the flavor of garnet.
I have been working with azure key vault for the past year and have definitely felt the need for a secrets manager that's more developer focused and easy to use. Most secret managers out there are tied to cloud service providers and do not take a holistic view of the problem. Glad to see the focus is shifting towards a more generalistic solution
Cool. I’ve been using AWS secrets manager for a while now, and though it serves as a great store for secrets, the developer experience hasn’t been great for our team due to which we’ve resorted to writing an in-house wrapper around it.
A simple-to-use, self-hosted solution makes a ton of sense -- excited to give it a spin!
I've run into these exact pains in managing secrets with my team and am very happy that Garnet provides an easy and appealing solution. Their repo is very well put-together and definitely sets a standard for excellent organization and documentation
I was reluctant to use Garnet as I always had a traditional approach with managing secrets. It wasn't until I accidentally deleted my sensitive and critical data that I started to look out for a better way of doing things. That's where Garnet came in. Very easy to install and getting started to use it's features. Definitely recommended for everyone before it's too late and you have to spend a couple of days trying to re-register your keys and stuff