What’s SSO and how do I put vendor API keys into it? Like one of the most import... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

wodenokoto 70 days ago | parent | context | favorite | on: Ask HN: How to store and share passwords in a comp...

What’s SSO and how do I put vendor API keys into it? Like one of the most important APIs we have is just 1 key and that’s it. I don’t think the vendor has heard the term “key rotation”

steve1977 70 days ago | [–]

I would recommend you get some people with IT security knowledge on board, either permanently or at least to do a review.

duckmysick 70 days ago | [–]

For API keys you want to look into secrets management, for example Hashicorp Vault or OpenBao. AWS/Azure/Google Cloud also have their own secrets management features.

Consider applying for YC's W25 batch! Applications are open till Nov 12.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact