Updated on 2024-07-18 GMT+08:00

Overview

Application Scenario

You can connect CAE to DEW to help applications obtain secrets from DEW, which simplifies the connection between applications and DEW and improves security.

If secrets such as access keys and SSH keys need to be injected into your code as environment variables, you can configure DEW secrets to ensure key security.

For details about how to create and manage secrets, see Cloud Secret Management Service.

Architecture

Figure 1 Process of injecting secrets as environment variables

Restrictions

You must authorize KMS CMKFullAccess and CSMS ReadOnlyAccess to agency cae_trust. For details, see Assigning Permissions to a User Group.

Before enabling this function, you need to perform DEW authorization as an administrator.