Add chamber (#109)

* Add Chamber to help manage secrets with SSM+KMS

* Update README, sort deps

* fix d/l url

Dockerfile

@@ -113,6 +113,11 @@ ENV AWS_ASSUMED_ROLE_VERSION 0.1.0
 RUN curl --fail -sSL -o /etc/profile.d/aws-assume-role.sh https://raw.githubusercontent.com/cloudposse/aws-assumed-role/${AWS_ASSUMED_ROLE_VERSION}/profile \
     && chmod +x /etc/profile.d/aws-assume-role.sh
 
+# Install Chamber to manage secrets with SSM+KMS
+ENV CHAMBER_VERSION 2.0.0
+RUN curl --fail -sSL -o /usr/local/bin/chamber https://github.com/segmentio/chamber/releases/download/v${CHAMBER_VERSION}/chamber-v${CHAMBER_VERSION}-linux-amd64 \
+    && chmod +x /usr/local/bin/chamber
+
 # Install goofys
 ENV GOOFYS_VERSION 0.19.0
 RUN curl --fail -sSL -o /usr/local/bin/goofys https://github.com/kahing/goofys/releases/download/v${GOOFYS_VERSION}/goofys \

README.md

@@ -26,16 +26,17 @@ An organization may chose to leverage all of these components, or just the parts
 
 At its core, Geodesic is a framework for provisioning cloud infrastructure and the applications that sit on top of it. We leverage as many existing tools as possible to facilitate cloud fabrication and administration. We're like the connective tissue that sits between all of the components of a modern cloud.
 
-* [`kops`](https://github.com/kubernetes/kops/) for Kubernetes cluster orchestration
+* [`ansible`](http://docs.ansible.com/ansible/latest/index.html) Ansible is an IT automation tool. It can configure systems, deploy software, and orchestrate more advanced IT tasks
 * [`aws-cli`](https://github.com/aws/aws-cli/) for interacting directly with the AWS APIs
+* [`chamber`](https://github.com/segmentio/chamber) for managing secrets with AWS SSM+KMS
 * [`helm`](https://github.com/kubernetes/helm/) for installing packages like Varnish or Apache on the Kubernetes cluster
-* [`terraform`](https://github.com/hashicorp/terraform/) for provisioning miscellaneous resources on pretty much any cloud
-* [`packer`](https://github.com/hashicorp/packer/) for creating identical machine images for multiple platforms
+* [`kops`](https://github.com/kubernetes/kops/) for Kubernetes cluster orchestration
 * [`kubectl`](https://kubernetes.io/docs/user-guide/kubectl-overview/) for controlling kubernetes resources like deployments or load balancers
-* [`ansible`](http://docs.ansible.com/ansible/latest/index.html) Ansible is an IT automation tool. It can configure systems, deploy software, and orchestrate more advanced IT tasks
 * [`gcloud`, `gsutil`](https://cloud.google.com/sdk/) for integration with Google Cloud (e.g. GKE, GCE, Google Storage)
 * [`gomplate`](https://github.com/hairyhenderson/gomplate/) for template rendering configuration files using the GoLang template engine. Supports lots of local and remote datasources
 * [`goofys`](https://github.com/kahing/goofys/) a high-performance Amazon S3 file system for mounting encrypted S3 buckets that store cluster configurations and secrets
+* [`packer`](https://github.com/hashicorp/packer/) for creating identical machine images for multiple platforms
+* [`terraform`](https://github.com/hashicorp/terraform/) for provisioning miscellaneous resources on pretty much any cloud
 
 ## Demo