Skip to main content

Configure plugins

Deploy applications in the cloud environment

During deployment in the cloud, SecretsManagerCredentialsPlugin takes the credentials data you provide in the Secrets app and passes it to applications.

SecretsManagerCredentialsPlugin must have access to secrets in the cloud environment. Use this plugin for deploying applications in the cloud.

Run tests in TeamCity

When you run tests, SecretsManagerCredentialsPlugin doesn't have access to secrets provided in the Secrets app. To run tests in TeamCity:

  • Use the InsuranceSuite platform CredentialsPlugin.
  • Provide the credentials XML file from which CredentialsPlugin takes the credentials data.

Credentials plugin configuration

Guidewire provides the CredentialsPlugin.gwp file as a part of Cloud Base Configuration (CBC) and updates it during the automated update process (Snowcat).

The CredentialsPlugin.gwp file contains the following default configuration:

<?xml version="1.0"?>
<plugin interface="CredentialsPlugin" name="CredentialsPlugin">
  <plugin-gosu disabled="true" gosuclass="gw.plugin.credentials.impl.CredentialsPlugin">
    <param name="credentialsFile" value="credentials.xml"/>
  </plugin-gosu>
  <plugin-java env="cloud-dev" javaclass="com.guidewire.orange.credentials.SecretsManagerCredentialsPlugin" plugindir="credentialsplugin">
    <param name="AWSRegion" value="${PLUGIN_AWS_REGION}"/>
    <param name="RefreshInterval" value="1"/>
    <param name="AWSSecretNames" value="${PLUGIN_AWS_SECRET_NAMES}"/>
    <param name="AWSSecretTags" value="${PLUGIN_AWS_SECRET_TAGS}"/>
    <param name="UseHelios" value="${PLUGIN_CP_USE_HELIOS}"/>
  </plugin-java>
</plugin>

Where:

  • The disabled plugin-gosu is the Gosu implementation used for tests on the local environment which uses the credentials.xml file as the source of usernames and passwords.
  • plugin-java points to the default Java implementation provided by Guidewire. The plugindir property indicates the path to the directory where the class path for this plugin is located. Environment is set to cloud-dev by default for all cloud deployments.
  • Dynamic parameters in the default implementation are populated automatically and you can't change them.

For more information on CredentialsPlugin, see the InsuranceSuite documentation.