Bringing together the Apache Cassandra experts from the community and DataStax.

Want to learn? Have a question? Want to share your expertise? You are in the right place!

Not sure where to begin? Getting Started

 

question

praveenkg avatar image
praveenkg asked Erick Ramirez answered

What is the best approach to keep Astra DB secure bundle out of code base?

Hi,

We are using Astra DB and currently we are maintaining the Astra DB secure bundle in git repo along with code base in resource folder. As I understand, this is not secure approach as secure zip contains certificate and other secure information. Wanted to understand the best approach to handle the scenario.

astra dbsecurity
10 |1000

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

Erick Ramirez avatar image
Erick Ramirez answered

Our recommendation is to store the secure bundle in a secure location such that only the application has the credentials to retrieve it.

For example, if your application is deployed on AWS then store the secure bundle on a private S3 bucket where only the application service account is able to access it. You would use the corresponding object storage if your app is deployed on GCP or Azure. Cheers!

Share
10 |1000

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.