Skip to main content

Vault interface

Use the Vault interface to create, organize, and manage Vault items

The Vault interface allows you to view your secrets, keys, and stored Pangea Tokens in a familiar directory-style view.

Adding Vault items

Add a new Vault item by completing these steps:

  1. In the Pangea Cloud interface, click Vault in the left side navigation menu.
  2. Click Secrets & Keys.
  3. Click the + New button.
  4. Select the Vault item type.
  5. A new menu displays. Continue through the menu pages filling in the relevant information.
  • To modify default token settings, click the gear icon in the Token page.
  1. Click Done after completing the entries.

Based on your selection, you may be asked if you'd like to create a Pangea-generated item or if you'd like to import an item.

Vault items that can be added:

  • Keys (symmetric and asymmetric)
  • Secrets
  • Pangea Tokens

Folders

Vault items are organized into folders and subfolders. Folders are defined as part of Vault item creation and editing, with the folder property. Folders can be created by the following methods:

  • Defining a non-existent path for any Vault item
  • Clicking + New and selecting folder on the Secrets & Keys page

For example:

  1. Key1 is in folder /folder1.
  2. To create a new folder, /folder/sub_folder1, select the Secrets & Keys page.
  3. Select Key1 in the Vault items list.
  4. Click the menu icon in the side menu that displays, and select Edit.
  5. Edit the folder property of Key1 to /folder/sub_folder1.

Alternatively, you can create a new folder when adding a Vault item by typing in the desired folder name in the Folder field.

tip

If you edit the folder property of Key1, it will be moved to the designated folder.

note

A folder is removed from the Vault when it no longer contains any Vault items or sub_folders containing Vault items.

Interacting with Folders

Folder properties can be viewed by single-clicking the folder name. This will cause the right panel to display high-level details of the folder's contents.

Folders are opened by double-clicking the folder. This will cause the folder to get added to the breadcrumb navigation above the Vault items table.

Searching

The search bar of the Secrets & Keys page allows you to search for keys by partial name.

Clicking the Filter icon on the right side of the search input field will open the Advanced search dialog. Opening this dialog will allow you to narrow your search by:

  • Vault item type
  • Vault item ID
  • Tags
  • Folder

Vault item details

Single-clicking any Vault item will cause the right panel to display the Vault item details. Here you'll see information like purpose, algorithm, rotation policy (if one exists), tags, and metadata.

Disabling a Vault item

When viewing Vault item details, you can click the toggle at the top of the right panel to change the enablement state of the selected item. Disabling a Vault item will disable the item and all versions for usage.

Editing a Vault item

Clicking the three-dot menu icon at the top of the right panel will allow you to edit your Vault item. Here you can update metadata, tags, rotation details, etc. You will not be able to modify the Vault item type, purpose, or algorithm.

Retrieving Vault item material

In the case of secrets, Pangea tokens, and asymmetric keys, you may need to retrieve key or secret material. To do this, click the three-dot menu icon at the top of the right panel and then click Copy \<material type>.

  • Asymmetric keys
    • Copy public key
  • Secrets
    • Copy secret
  • Pangea Tokens
    • Copy token

Versions

To view all versions of a Vault item, click the Versions tab on the right panel. The displayed listing will show all current and previous versions of the Vault item. Each item will show the version state and an upcoming or previous rotation date when applicable.

Changing a version state

Clicking the three-dot menu to the right of the Vault item version will allow you to change the version state. If the version state is changed to Compromised, you must also configure a destruction date.

Was this article helpful?

Contact us