How to store PEM/P8 key in Secrets?

tito · October 7, 2023, 3:39pm

I’m trying to save the contents of a .p8 file in secrets. Typically, the contents would look something like this:

When I paste it to secrets, it’s saved in one line and once retrieved, seems to be malformed because I cannot initialize the push notification client that requires it. I say “seems” because the client initializer that requires the key errors out.

However, if I hard-code the key in the app as shown above (respecting the multi lines), then it works fine and the client initializes properly.

Is there a way to make it work using secrets?

ignoramous · October 7, 2023, 4:47pm

If you can use a base64 encoded secret, then yes.

See this discussion: How are you managing cert files with Fly? - #16 by michael

tito · October 7, 2023, 8:25pm

I ended up encoding the newlines (replacing them with \n (the actual two characters, not the escape sequence) and then translate them back to real newlines in the app. Something like this:

func encodePEMKey(_ key: String) -> String {
    return key.replacingOccurrences(of: "\n", with: "\\n")
}

func decodePEMKey(_ encodedKey: String) -> String {
    return encodedKey.replacingOccurrences(of: "\\n", with: "\n")
}

Works fine now. Thanks!

system · October 14, 2023, 8:26pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How are you managing cert files with Fly? Questions / Help	21	4513	November 11, 2022
Cannot add Private Key using flyctl to a environment variable Questions / Help	8	1318	May 8, 2023
Setting firebase secrets from JSON	2	813	March 8, 2023
Setting a secret in JSON format Questions / Help	6	2245	November 28, 2023
Is my CONFIG.JSON File exposed? Questions / Help	2	380	March 22, 2023

How to store PEM/P8 key in Secrets?

Related topics