Display the current CLI configuration, including project, cluster, and authentication details.Usage:
porter config
Flags:
Flag
Description
--show-token
Display the CLI authentication token and session credentials in the output. By default, tokens are hidden for security. Pass this flag to reveal the values.
Configuration values can be overridden using flags or environment variables. See Basic Usage for details.
Session tokens for browser-based logins are stored in your operating system’s secure credential store (macOS Keychain, Windows Credential Manager, GNOME Keyring/Secret Service, or KWallet) rather than in porter.yaml. The --show-token flag reads these values from the keyring and prints them alongside the rest of your configuration.
When you log in with porter auth login, the CLI stores your session tokens in your operating system’s secure credential store:
Platform
Backend
macOS
Keychain
Windows
Credential Manager (wincred)
Linux (GNOME)
Secret Service / libsecret
Linux (KDE)
KWallet
Headless / fallback
Encrypted file at ~/.porter/keyring
If you previously logged in with an older CLI version that wrote session tokens to porter.yaml, those tokens are automatically migrated to the keyring on the next run and removed from the YAML file.
On systems without a native credential store (for example, CI containers or headless servers), Porter falls back to an encrypted file at ~/.porter/keyring. Set PORTER_KEYRING_PASSWORD to control the password used to encrypt that file:
