How to store credentials securely? | Appsmith | Page 1

novel panther Feb 18, 2023, 6:02 PM

#

Hey devs,

I am using Appsmith Cloud and was pleased to discover that we can now integrate the AWS SDK and utilize it within Appsmith. I want to send messages to a queue via SQS, but the AWS SDK requires credentials, namely the AccessKey and SecretAccessKey, which are stored in the AWS config object. I am concerned about how to securely store these credentials on Appsmith, as storing them in plain text is not a viable option.

Do you have any recommendations on how to handle this securely?

pine ruinBOT Feb 18, 2023, 6:07 PM

#

Hey There,

We've registered your query, and our team will get back to you soon.

Regards,
Team Appsmith

flat notch Feb 20, 2023, 5:21 AM

#

I am not sure if I understand your use case.

But here are two functions to encrypt/decrypt the keys into a scrambled password protected string, using the forge js library that comes installed by default in Appsmith:

flat notch Feb 20, 2023, 5:40 AM

#

Since it is not possible to post code here without it breaking I attatched a file with the code.

📎 functions.js

#

That is better!

#

credit: ChatGPT after some deliberation between the two of us. 🤪

novel panther Feb 20, 2023, 10:24 AM

#

Hey kanintesova.
Thanks a lot for the reply. If I understand correctly, I still need to store the password for decryption somewhere. Which would lead me to the same initial question. Do we have any option to use environment variables when using cloud? Can we access AWS parameter store / secrets manager somehow?

flat notch Feb 20, 2023, 6:25 PM

#

Hi, my guess was that this might be the case. Just want to say I am not one of the developers. Hope they can provide you with some answers to clear things up.

pine ruinBOT Feb 20, 2023, 6:41 PM

#

Please help us with the following information for faster debugging.

Which version of Appsmith are you on?
Add details about your use case.

quasi elk May 2, 2023, 2:28 AM

#

novel panther Hey devs, I am using Appsmith Cloud and was pleased to discover that we can now...

How were you able to install the SDK> When I try to install it through the CDN, I get an error in appsmith saying its not supported...

pine ruinBOT May 2, 2023, 8:54 PM

#

@novel panther Gentle reminder.

novel panther May 30, 2023, 10:24 AM

#

@quasi elk Sorry for the late reply. Missed this. I could install it via https://cdnjs.com/libraries/aws-sdk

cdnjs

aws-sdk - Libraries - cdnjs - The #1 free and open source CDN built...

AWS SDK for JavaScript - Simple. Fast. Reliable. Content delivery at its finest. cdnjs is a free and open-source CDN service trusted by over 12.5% of all websites, serving over 200 billion requests each month, powered by Cloudflare. We make it faster and easier to load library files on your websites.

pine ruinBOT May 30, 2023, 4:46 PM

#

@novel panther Are you still facing this issue?

novel panther May 30, 2023, 5:35 PM

#

I still haven't found any solution for the initial issue.

pine ruinBOT May 30, 2023, 8:58 PM

#

I've brought this to the team's attention.

undone rampart May 30, 2023, 9:01 PM

#

@novel panther , you could store the access key in a database, Google Sheet, or Airtable, etc., then have a query that runs on page load to retrieve the values. The key would still get loaded on the client side, but it would no longer be stored in the app definition or visible in the exported code.

pine ruinBOT May 31, 2023, 9:27 PM

#

@novel panther Is the above suggestion viable for your use case?

novel panther Jun 17, 2023, 2:40 PM

#

Hey. Yes, thanks a lot. I'll try that! Thanks a lot for the support!

#How to store credentials securely?