Understand Vault

The Vault concept in the Global AI platform refers to a secure credential and variable management feature within automation environments.

Purpose and usage

The Vault provides a secure location where you store credentials and variables that automations and workflows use. The key aspects include:

• Variable types: The feature allows creating new variables, which can become secret or non-secret, including items like emails or API keys.
• Workflow access: You can access and use Vault variables in different parts of the workflow, including:
  • In expression and condition configuration.
  • In custom code, such as Java or Python scripts.

Segregation and scope

The Vault connects directly to the Workspaces concept. The platform uses Workspaces to segregate environments:

• Workspace segregation: Each Workspace maintains its own vault for credentials. The platform segregates everything within a Workspace, ensuring that the Vault makes variables accessible only within that specific Workspace.
• GitHub analogy: This segregation functionality works like having secrets per repository in GitHub.
• Dynamic variables: Depending on the scope, such as in cluster management, the same variable in the Vault can mean something different. For example, you can have a "password" variable for a cluster, but it will contain a different password if the cluster runs on Amazon Web Services (AWS) or Azure.

When using the Vault, global administrators can configure the application, create Workspaces and grant permissions, ensuring that, for example, the finance department can't see IT department credentials and vice versa.

Related articles

Now that you understand the Vault concept, you can learn how to create and manage secrets within it.

How to Create and Manage Workspaces

A guide on creating and managing workspaces for organizing your secrets and variables in the Vault.

How to Add and Use a Secret from the Vault

Learn how to create, store, and use secrets and variables securely in the Vault.