Clients

Docker credential store

docker-credential-custodia is an implementation of Docker Credentials Store in Go.

curl

Test Custodia:

$ curl --unix-socket /var/run/custodia/custodia.sock -X GET http://localhost/
{"message": "Quis custodiet ipsos custodes?"}

Initialize a container for secrets:

$ curl --unix-socket /var/run/custodia/custodia.sock -X POST http://localhost/secrets/container/

Create or update a secret:

$ curl --unix-socket /var/run/custodia/custodia.sock -H "Content-Type: application/json" -X PUT http://localhost/secrets/container/key -d '{"type": "simple", "value": "secret value"}'

Get a secret:

$ curl --unix-socket /var/run/custodia/custodia.sock -X GET http://localhost/secrets/container/key
{"type":"simple","value":"secret value"}

Delete a secret:

$ curl --unix-socket /var/run/custodia/custodia.sock -X DELETE http://localhost/secrets/container/key