Hi. Sorry for interrupting, I will try to explain our basic business requirement:
Our example scenario is as follows:
- We want DB password to be encrypted and available for service A but NOT for service B.
- We ask DBA for password, DBA is requesting a configuration service for an encrypted value. DBA is sending us an encrypted value, so we can put it into configuration repo.
- This value will be encrypted correctly by configuration service ONLY when service A is asking for configuration, but will not be encrypted when I put it for configuration files of the service B, as different key is used.
Please, let me know if something is unclear.