secrets
Secrets are encrypted variables you can store in Cortex for your workspace environment. Secrets can be accessed for use in various Cortex features, such as:
- Plugin proxies, to allow secure authenticated access to various third-party APIs.
- Workflows, when configuring an HTTP Request action.
Secrets are securely encrypted and stored in Cortex’s database, and the secret values are not accessible via public or private APIs once saved.
Accessing secrets
Secrets can only be accessed programmatically through features in Cortex. Secrets are generally referenced by configuration of the relevant feature through a templated string that uses Mustache-like syntax to reference the secret by tag. For instance, a plugin proxy header can reference a secret similar to the following example:
{
"name": "Authorization",
"value": "Bearer {{ secrets.my_secret }}"
}
Creating secrets
For convenience, secrets can be optionally named in a human-friendly manner. For programmatic access, secrets must have a unique tag that contains only alphanumeric characters and dashes.
You must have the Create secrets permission to create secrets.
To create a secret:
- Go to Settings > Secrets then click Add secret.
- In the modal, choose a tag and input your secret value.
- We recommend creating a user-friendly name for the secret.
- Note that tags cannot be edited after they are created.
- Click Create secret.
Editing secrets
You must have the Create secrets permission to edit secrets.
To edit a secret:
- Go to Settings > Secrets then click the pencil icon next to the secret you want to edit.
- In the modal, edit the secret name.
- We recommend creating a user-friendly name for the secret.
- Click Create secret.