When building applications, it's common to handle sensitive information like API keys, passwords, and encryption keys. Storing them directly in your code or configurations is risky and can expose them to unauthorized access.

Instead, these should be stored in secret managers like AWS SSM, GCP Secret Manager, Azure Vault, etc. However, setting this up directly from cloud accounts can be complex.

TrueFoundry simplifies this process by integrating with popular secret managers. You can securely store your secrets in the cloud using TrueFoundry's user interface. Follow the instructions here to integrate your Secret Store.

Secret groups

In a project, you likely have a set of secrets associated with it. Managing these individually can be cumbersome.

Enter secret groups. These let you organize and manage related secrets for a specific project. This grouping makes it easier to identify and manage secrets logically.

Within a Secret Group, you can easily add, remove, and update secrets. Plus, you can grant access permissions to the entire group, streamlining access control without the need to handle each secret individually.

Store Secrets in your Secret Store with Truefoundry

Suppose your backend service needs to load a database password and an API key for an external service. You can create a secret group for that backend service and add the database password and the API key as secrets under that secret group. To do so, follow the steps below:

Use Secrets in your Secret Store

You can now copy your Secret's FQN using the instructions given below. You can also see in which deployments, the secrets are being used.