tresor 🔒

tesor ( [tʁeˈzoːɐ̯] ) is a Scala library to access secrets (credentials etc.) from different sources.

Features

  • Provider for AES-256 encryption
  • Providers for secrets from Hashicorp Vault engines (currently KV, Database, AWS)
  • Integration with cats-effect
  • Apache 2.0 licensed

Goals

Provide an idiomatic access to mainstream ways of working with secrets in Scala

Follow a light-weight approach, avoid feature creep and dependencies where possible

Non-Goals

tresor will not

… be a full-blown authentication library

… support all Vault engines or API calls (should be easy enough to extend)

… integrate with other high-level libraries (this could be done in extra modules though)

The source code for this page can be found here.