Implement secret management commands

[dalazx]

neuro secrets shows the list of the user's secrets.

GET https://dev.neu.ro/api/v1/secrets

neuro secrets add adds a new secrets or replaces an existing one given its key.

POST https://dev.neu.ro/api/v1/secrets
{
    "key": "<KEY>",
    "value": "BASE64ENCODED(<VALUE>)"
}

neuro secrets remove removes the secret by its key.

DELETE https://dev.neu.ro/api/v1/secrets/<KEY>

The backend codebase: https://github.com/neuromation/platform-secrets/blob/ca8e3c3eb9ce8168e09c7ec335b613e64e58e83f/platform_secrets/api.py#L92-L122

[dalazx]

@asvetlov @shagren
Any ideas on how to pass binary values via CLI?

[shagren]

You mean this:

curl  https://example.com -X POST --data "{\"key\": \"test\", \"value\": \"$(cat path/file/.ext | base64)'\"}"

?

[dalazx]

yep, but using CLI. I remember you suggested using @filename.ext similarly to curl.
@asvetlov what do you think?

[shagren]

You mean neuro cli.
I see two options:

# curl style
neuro secrets update secret-name text-value
neuro secrets update secret-name @file.ext
#kubectl style
neuro secrets update secret-name text-value
neuro secrets update secret-name --from-file=file.ext 

[dalazx]

thanks @shagren
I like the second variant more. up to @asvetlov to decide.

[asvetlov]

I have no strong preference.
@file.ext is shorter though (and less ambiguous, there is no need to forbid neuro secrets add secret-name --from-file=file.ext secret-value notation).