Sensitive Property Key Migration
In order to change the key used to encrypt the sensitive values, provide the new key or password using the -k
or -p
flags as usual, and provide the existing key or password using --old-key
or --old-password
respectively. This will allow the toolkit to decrypt the existing values and re-encrypt them, and update 'bootstrap.conf' with the new key. Only one of the key or password needs to be specified for each phase (old vs. new), and any combination is sufficient:
-
old key → new key
-
old key → new password
-
old password → new key
-
old password → new password