Ziggy
Secrets

Secrets managementEncrypted, Per-Environment, Access-Controlled

Store encrypted secrets with independent values for Development, Staging, and Production. Ownership-based access control protected.

ENCRYPTION

Encrypted Secret Storage organization-scoped

A handy centrally managed place to store secrets that can be queried by you integrations.

ZIntegrate Secret Management Grid
  • AG Grid columns: Name, Description, Dev (Yes/No), Staging (Yes/No), Prod (Yes/No), Owner, Created
  • Add Secret with fields: Name (e.g. STRIPE_API_KEY), Description, and three environment values
  • Row click opens edit mode showing read-only UUID and all editable fields
  • Unique name constraint enforced per organization with clear error messages
Per-Environment Values

Per-Environment Values dev, staging, production

Each secret supports independent values for Development, Staging, and Production. The grid shows boolean indicators per environment; the detail view shows partial masks for security.

ZIntegrate Secret Environment Values
  • Three independent optional values for Development, Staging, and Production
  • Grid shows boolean availability indicators per environment
  • Detail view shows partial masks (e.g., "sk_live_***RgA1")
  • Dirty flag tracking: only changed values sent to server on update
Security

Security Model never exposed to the frontend

Full secret values are never sent to the frontend. The server returns only masked values — decrypted values are used exclusively server-side during integration execution.

ZIntegrate Secret Security
  • Full secret values never sent to the frontend
  • Server returns only masked values for display
  • Decrypted values used only server-side during execution
  • Delete confirmation requires typing "delete" exactly to enable the destructive button
Access Control

Ownership-Based Access creator owns, admins override

The creator becomes the owner of each secret. Only the owner or Admin/SuperAdmin users can update or delete. Non-owners see an amber warning banner with all form fields disabled.

ZIntegrate Secret Access Control
  • Creator becomes owner with full modify and delete permissions
  • Admin and SuperAdmin can override ownership for management
  • Non-owners see amber warning banner: "Only {owner} can modify this secret"
  • Server enforces owner OR rolePriority >= 100 for write operations

Start building. The infrastructure is done.

Get the source codeExplore the architecture
1Clone the repository
2Configure your environment
3Start building your product