Secrets Management

Enterprise-grade secrets and credential management

JustKalm implements comprehensive secrets management with HashiCorp Vault integration, automatic rotation, and fine-grained access controls for all sensitive credentials.

Secrets Overview

Current secrets inventory

847

Total Secrets

100%

Vault Managed

Expired Creds

24h

Max Token TTL

Secret Categories

Database Credentials

PostgreSQL connections
Redis passwords
MongoDB connection strings
Dynamic credentials

API Keys & Tokens

External API keys
OAuth client secrets
Service account tokens
Webhook signing keys

Encryption Keys

Data encryption keys
TLS certificates
Signing keys (JWT)
SSH keys

Zero-Trust Secrets Access

How secrets flow through our systems

Service Authentication

Service proves identity via Kubernetes ServiceAccount or cloud IAM

Policy Evaluation

Vault checks ACL policies for the authenticated identity

Dynamic Credential Generation

Vault generates short-lived, scoped credentials on demand

Automatic Rotation

Credentials are automatically rotated before expiry

Secrets management powered by HashiCorp Vault Enterprise with auto-unseal