...
The project will also provide a Secret Management Service with the following features and capabilities:
- RESTful API support
- ADD
- UPDATE
- DELETE
- Token based authentication for above requests username and password based authentication will also be supportedSupport multiple Secret domains
- Each domain can be used to multiple secrets
- Each domain is associated with various policies
- Each secret can have multiple key value pairs
- Certificate based authentication
- Authenticate users with AAF
- Token based authentication
- Securely store secrets using AES encryption
- Use TPM/SGX for key storage if available
- RESTful API support for ADD, UPDATE, DELETE of secrets
The below diagram illustraces the Secret Service High Level Flow in an ONAP Context
...