Secrets
With secrets, you can store sensitive data like authentication credentials to gain access to external systems.
Access to this application is managed by Guidewire Hub. For details, see Access Cloud Platform apps and services.
To work with secrets, you must use the latest version of the SecretsManagerCredentialsPlugin plugin. Contact your customer partner.
A secret is a key-value pair in which the key is a secret identifier and the value is sensitive data that you need to store.
After you add a secret, you can edit its value.
To use a secret, refer to its key in your code.
Secret context
When you add a secret, you can specify the context to which the secret applies. The context can be a star system, a planet, or an application.
In each context, you can assign different values to a key. Add secrets with the same key and specify the context for each secret. During runtime, key values are imported to applications in order from the most specific to the least specific assignment.
For example, you can create two secrets with the key some.key and specify the following values:
user:passwordCCfor ClaimCenteruser:passwordAllfor all applications in the planet
During deployment, the key some.key returns the value user:passwordCC for ClaimCenter and user:passwordAll for any other application deployed in the specified planet.
Credentials plugin
When you add authentication credentials in the Secrets app and refer to them in the application code, they are automatically passed to SecretsManagerCredentialsPlugin.
SecretsManagerCredentialsPlugin must have access to secrets in the cloud environment. Use this plugin for deploying applications in the cloud.
When running tests, SecretsManagerCredentialsPlugin does not have access to that environment. To run tests, use the InsuranceSuite CredentialsPlugin and an XML credentials file.
For more information, see Configure plugins.