General information about the Secrets Manager product

Secrets Manager is a unified, secure service for storing secrets — sensitive data, such as usernames and passwords for accessing applications and databases, SSH keys, API keys, and other confidential data from Servercore or external services.

You can work with secrets in the control panel, via the Secrets Manager API.

The product supports: user types and roles, projects.

Records of operations with secrets are saved in audit logs.

Secrets

All sensitive data that you add to Secrets Manager is stored in a single repository. Only authorized users have access to this repository.

Secrets are stored in an encrypted format (AES 256-GCM). When extracting data, TLS encryption is used, which protects data from eavesdropping and modification.

Sensitive data added to Secrets Manager does not need to be stored in the source code; you can configure automatic access to it from your applications.

You can store multiple versions of a single secret.

Cost

The service is provided free of charge.