Storing and calling user's secrets

deepsand · July 4, 2021, 3:18am

Hi team, can you please explain the best way to store and use a user’s secrets (e.g. API keys) in fly.io?

The flow is:

User logs into the application
User is presented with a form to enter their API key
User enters their API key
API key is stored in a vault/secrets manager
The application uses this API key to make calls on the user’s behalf

Hoping there’s a way to do this easily using fly.io. I’m across the flyctl secrets command, but that is more helpful for the use of my own secrets.

Thank you!

michael · July 4, 2021, 4:08pm

It’s common to store an encryption key in your app’s secrets that you use to encrypt your user’s secrets. Then you can safely store the encrypted text in your database. Lots of web frameworks, like Rails, do this.

deepsand · July 5, 2021, 12:43am

Hi Michael, thanks for your quick response - appreciate it. I was looking for a way to store them within the vault itself but yes this pattern is an option for sure. Thank you.

Topic		Replies	Views
Storing customer secrets on Fly Questions / Help	12	1059	May 4, 2024
Is my CONFIG.JSON File exposed? Questions / Help	2	372	March 22, 2023
Creating Secrets With API Questions / Help	4	56	August 16, 2024
Secrets vs. Normal Environment Variables	1	879	February 24, 2023
Fly secrets Questions / Help django , storage , tigris	4	261	February 22, 2024

Storing and calling user's secrets

Related topics