dsec: Commands & Integrations

Commands

# List all secrets
dsec list

# Show secret (with clipboard option)
dsec show v3/domains/d000/ise/admin
dsec show -c v3/domains/d000/ise/admin  # Copy to clipboard

# Edit secret
dsec edit v3/domains/d000/ise/admin

# Generate password
dsec generate v3/servers/new-server/root 32

# Sync with git
dsec sync

# Mount/unmount vaults
dsec mount sensitive
dsec umount sensitive

# Vault integration
dsec vault-login
dsec vault-lookup secret/data/myapp

Integrations

netapi

# Load credentials
dsource d000

# netapi uses env vars automatically
netapi ise sessions
netapi pfsense dns list
netapi wlc clients

Ansible

# In playbook
- name: Deploy certificate
  copy:
    content: "{{ lookup('community.hashi_vault.vault_read', 'pki_int/issue/domus-client') }}"
    dest: /etc/ssl/certs/host.crt

Shell Scripts

#!/bin/bash
# Load credentials at script start
source ~/.secrets/dsource/dsource.sh
dsource d000

# Now use env vars
curl -u "$ISE_USER:$ISE_PASS" "https://$ISE_HOST/api/..."

Installation

# Prerequisites
sudo pacman -S gopass gnupg gocryptfs

# Clone dsec
git clone git@github.com:EvanusModestus/dsec ~/.secrets

# Initialize gopass
gopass init

# Setup dsource alias in .zshrc
source ~/.secrets/dsource/dsource.sh