handling private user data

[Ricardo Kirkner]

Hi,

I'm trying to write a charm so that I can completely automate my dev
environment (and potentially start working from the cloud, or at least
have everything I need one juju deploy away).

This involves certain aspects which are really easy to do like:

- install packages
- clone branches
- include configuration files

However, that last item is only easy if the configuration files don't
include any sensitive data (as long as you want to keep the charm
opensource, which is my case).

The problem I find is that I want to include sensitive information like

- ssh keys
- gpg keys
- password files

which for obvious reasons I cannot/will not host on a public repository.

So the question is, how can handle private user data when deploying a charm?

I currently keep a repository for these files in a usb pendrive, and my
natural thinking was adding a config option to my charm to set the
location to that repository and then have the charm somehow push/clone
that repository into the unit, but I haven't found any way of doing this.


Any ideas on how to solve this, or work around it until there is an
official solution are really welcome :)

thanks
Ricardo