(Tcl) Doppler Secrets - Setup Bootstrap Secret in Memory

See more Secrets Examples

Accessing a cloud-based secrets manager requires authentication credentials, which cannot be stored within the secrets manager itself.

This example shows how to set up an in-memory bootstrap secret with authentication credentials which will be used in other examples to access Doppler secrets.

Note: This example requires Chilkat v10.1.0 or later.

For more information, see https://cknotes.com/chilkat-secrets-class-added-in-version-10-1-0/

Chilkat Tcl Extension Downloads Chilkat Tcl Extension Downloads

load ./chilkat.dll

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

set bootstrap [new_CkSecrets]

# This bootstrap secret will reside in memory.
CkSecrets_put_Location $bootstrap "memory"

# Specify the name of the bootstrap secret.
# service and username are required.
# appName and domain are optional.
# Note: The values are arbitrary and can be anything you want.
set json [new_CkJsonObject]

CkJsonObject_UpdateString $json "appName" "doppler_bs"
CkJsonObject_UpdateString $json "service" "Example"
CkJsonObject_UpdateString $json "username" "Joe"

# The bootstrap secret for Doppler Secrets will contain
# your Doppler authentication token.
# The secret is stored encrypted in memory, and is available to be used
# regardless of the lifetime of the "bootstrap" object.
set success [CkSecrets_UpdateSecretStr $bootstrap $json "dp.pt.uhcGAChAtpBkImhjT2xjwhdyG7rMJp75eEl4WAAAyUfc"]
if {$success == 0} then {
    puts [CkSecrets_lastErrorText $bootstrap]
    delete_CkSecrets $bootstrap
    delete_CkJsonObject $json
    exit
}

puts "The Doppler bootstrap secret has been stored in memory."

delete_CkSecrets $bootstrap
delete_CkJsonObject $json