Symfony Secrets

The EU-FOSSA hackathon was the opportunity to discuss and define a simple and flexible solution to use sensitive information (like passwords, authentication keys, …) in a Symfony application.

It solves the following common issue:

How to define new sensitive parameters without exposing them in a repository, nor configuring manually a server each time the projet requires a new env variable.

Thanks to @mpdude, @tobion, @nicolas-grekas and @jderusse, we defined the use cases that would be covered by that new feature, we designed the main interfaces and ended up with a working Proof of Concept.

This subject was proposed in the related RFC issue.

During the hackathon @mpdude wrote a nice blog post digging into that topic.