OOpenclawnet
  • Introduction
  • Docs
      • 20260425 concept review
      • 20260503 repo split decision
      • Agent runtime
      • Components
      • Glossary
      • Jobs
      • Memory service proposal
      • Nemoclaw mapping
      • Openclaw mapping
      • Overview
      • Provider model
      • Runtime flow
      • Scenarios s4 s5 plan
      • Secrets vault admin ui
      • Secrets vault azure readiness
      • Secrets vault evolution
      • Secrets vault lifecycle phase4
      • Secrets vault lifecycle phase5
      • Secrets vault phase5
      • Secrets vault phase6
      • Secrets vault threat model
      • Source of truth rules
      • Storage
  • Scripts
  • Sessions
    • RELEASE CHECKLIST
    • Session 2 guide es
    • Session 2 guide
    • Session 3 guide es
    • Session 3 guide
    • Session 4 guide es
    • Session 4 guide
    • Session 5 guide es
    • Session 5 guide
    • Speakers
  • Src
  • Tests
Powered by Docsbook
Docs/Architecture/Secrets vault admin ui
Scenarios s4 s5 planPreviousSecrets vault azure readinessNext

On this page

  • Decisions Needed from Bruno
  • 1. Goals & Non-Goals
  • Goals
  • Non-Goals
  • 2. Architecture & Placement
  • 2.1 Blazor Pages
  • 2.2 Gateway REST Endpoints (Recommended)
  • 2.3 Web Client
  • 3. Security Gates
  • Gate 2 — LLM Redaction
  • Gate 3 + Gate 5 — Audit Isolation
  • AuthZ — Admin Determination
  • Reveal-Value Flow
  • CSRF / Antiforgery
  • Rate Limiting
  • 4. Backend Awareness (Phase 3 Chained Store)
  • 4.1 BackendName in Metadata
  • 4.2 Read-Only Backends
  • 4.3 Cache Invalidation
  • 5. UX Wireframes
  • 5.1 List Page (/vault)
  • 5.2 Edit Page (/vault/edit/{name?})
  • 5.3 Audit Page (/vault/audit)
  • 5.4 Confirmation Modals
  • 6. Telemetry
  • 6.1 Local SQLite Audit
  • 6.2 Application Insights (Phase 3 Audit Sink)
  • 6.3 Structured Logging
  • 7. Test Strategy Preview
  • 7.1 Unit Tests
  • 7.2 Integration Tests
  • 7.3 E2E Tests (Playwright)
  • 8. Phased Rollout
  • UI-Phase-A: List + Create + Delete
  • UI-Phase-B: Reveal + Rotate + Audit Viewer
  • UI-Phase-C: Backend Chips + Advanced Features
  • 9. Risks & Open Questions
  • Risks
  • Open Questions for Bruno
  • Appendix A: Endpoint Specification
  • GET /api/vault/secrets
  • GET /api/vault/secrets/{name}?reveal=true
  • POST /api/vault/secrets
  • PUT /api/vault/secrets/{name}
  • DELETE /api/vault/secrets/{name}
  • GET /api/vault/audit?secret={name}&caller={id}&from={iso}&to={iso}&limit=100&offset=0

Was this page helpful?