DocuGen's API key is secured through AWS Secrets Manager which allows only authorized resources to access and decrypt the secret based on a secrets policy which is maintained by DocuGen's CTO and no one else.
More about AWS Secrets Manager here: https://aws.amazon.com/secrets-manager/
DocuGen's API key allows us to receive and confirm monday.com's account tokens. Each DocuGen user has a unique monday.com token generated and encrypted by monday.com. monday.com grants DocuGen the user tokens through an encryption protocol and following an explicit authorization by the user. DocuGen asymmetrically encrypts user tokens using AWS Key Management Service and stores the encrypted tokens in our secure AWS database. Nobody at DocuGen or elsewhere can decrypt user tokens except the DocuGen system resources that make calls to monday.com's API on behalf of the user. The decryption is done during runtime and on the fly.
More about AWS KMS here: https://aws.amazon.com/kms
Comments
0 comments
Please sign in to leave a comment.