- Status: approved
- Last updated: 2021-12
- Objective: Decide how to fetch OAuth secret values
OAuth credentials can be shared between GCP projects, but the secret configuration values must somehow be fetched from GCP.
- Auth not required: in [#117 (comment)], we decided that auth configuration should not be required to run the website.
- Security is paramount: we want to avoid storing the secret values on the developer's machine (in both terminal history and/or somewhere in the filesystem) if we can help it.
- Option 1: fetch config values programmatically via
gcloud - Option 2: download a credential file manually and extract values from that
- Option 3: prompt users to copy-paste the values into Cloud Console's Secret Manager page
- Option 4: use Terraform to either a) prompt users to specify values in their terminal or b) pre-configure them as
TFVAR_environment variables.
As a group, we decided on Option 3. Thus, we'll prompt users to copy-paste OAuth 2.0 secret config values into the Secret Manager page on Cloud Console.
We opted to create the secrets themselves (i.e. google_secret_manager_secret objects) via Terraform, as creating those objects does not require any highly-sensitive data.
In choosing this option, our intent is to maximize the security of the OAuth 2.0 configuration values. This increase in security comes at the expense of additional friction during the setup process.
"Security vs. convenience" is a very common tradeoff within the software industry. If we find that the additional friction added by manually interacting with the Cloud Console is too difficult to bear, we may revise this decision in favor of increased convenience.