Uploaded image for project: 'FOLIO'
  1. FOLIO
  2. FOLIO-2278

Spike: Secret Storage

    XMLWordPrintable

Details

    • Task
    • Status: Open (View Workflow)
    • TBD
    • Resolution: Unresolved
    • None
    • None

    Description

      Overview

      Encrypted storage is needed by several apps e.g. for things like (RMAPI keys, SMTP credentials, FTP credentials, etc.). Currently these things are not encrypted at rest. Some have their own APIs (just to access/manage the sensitive data) with their own permissions, others are simply stored in mod-configuration

      Specific Questions to be answered:

      1. What technologies would be appropriate for this?
      2. What might a solution look iike? Is there some abstraction layer/interface allowing for different implementations?
      3. What's required for a module to store/retrieve a secret?
      4. What's required on the infrastructure side?

      Acceptance Criteria

      • The questions above are answered
      • One or more approach is documented on the wiki
        • If more than one approach is provided, pros & cons are provided along with a recommendation
      • POC code (if applicable) is committed to git and linked to from the wiki page

      TestRail: Results

        Attachments

          Issue Links

            blocks

            Story - Created by Jira Software - do not edit or delete. Issue type for a user story. MODORGSTOR-33 Implement encryption of interface credentials

            • P3 - low priority level, item will be considered for inclusion in the next dev cycle
            • Draft
            relates to

            Story - Created by Jira Software - do not edit or delete. Issue type for a user story. MODEMAIL-4 Setup SMTP server: Part 1

            • P3 - low priority level, item will be considered for inclusion in the next dev cycle
            • Closed

            Task - A task that needs to be done. FOLIO-2875 SPIKE: how to distribute configuration through "multiple" interfaces

            • P3 - low priority level, item will be considered for inclusion in the next dev cycle
            • Closed

            Story - Created by Jira Software - do not edit or delete. Issue type for a user story. MODKBEKBJ-507 Spike: investigate possible ways to store secrets in DB

            • P3 - low priority level, item will be considered for inclusion in the next dev cycle
            • Draft
            mentioned in

            Page Loading...

            Activity

              People

                Unassigned Unassigned
                cmcnally Craig McNally
                Votes:
                0 Vote for this issue
                Watchers:
                10 Start watching this issue

                Dates

                  Created:
                  Updated:

                  TestRail: Runs

                    TestRail: Cases