Feature Request: The encryption keys of the environmental variables of the projects are isolated per organization in GitLab
Title:
The encryption keys of the environmental variables of the projects are isolated per organization in GitLab
Description:
All encryption keys used to encrypt/decrypt the environmental variables hosted in a project in Gitlab will be different per organization in order to achieve isolation between the organizations.
Short proposal on how to achieve:
Each organization is able to store an own encryption key in GitLab. If this key exists, it's used instead of the Global key to encrypt/decrypt the environmental variables.
The status quo is like this:
We will introduce an organization key, that could be set in the admin panel, and will be used instead of the global key to de/encrypt the variables. The organization key will still be stored in the Gitlab database, encrypted by the global key: