Secure Configuration

JustDeploy supports several methods of ingesting and egressing secure configuration data, such as keys, certificates and passwords. Secure information required to deploy resources can be stored and read from these resources. In addition some resources may create secrets in order to stored generated secure objects.

Plain Text

A simple way to place a password in a configuration YAML/JSON file. This method is not recommended for anything other than for dev/test builds which use separate credentials.

Azure Keyvault

The defacto method of storing keys, certificates and secrets in the Azure cloud. Please note secure inputs can be mixed. You may store a password for a new AWS VM in Azure Keyvault and vice versa.

Future Formats on the Road Map

There are a few more common formats and methods for storing data configuration that JustDeploy will support in the future:

AWS Secrets Manager

The defacto method of storing keys, certificates and secrets in the AWS cloud. Please note secure inputs can be mixed. You may store a password for a new Azure VM in AWS Secrets and vice versa.

AWS Systems Manager SSM Parameters

A common way to store simple passwords in AWS cloud.