Credential Store and Encryption Vault Service Release Notes

Credential Store and Encryption Vault Service Q1 2018

The following new feature was added:

Vault Playground: The Vault Playground provides you an environment to test the Predix Vault features from applications running outside of Predix, for example, your local environment. Using the Vault Playground, you can locally host applications and test them against the Predix Vault APIs.
For more information, see Vault Playground.

The following new features were added.

Specifying Time to Live (TTL) for a Token: The default TTL for a Vault service instance token is 32 days. You can now specify the duration of the tokens when you either bind your application to your Vault service instance or by creating a new service key.
For more information, see vault-service-managing-tokens.html#task_68c56a35-8f6e-4feb-98da-45a7e75e0aef.
Adding a Read-Only Policy to the Token: You can now add a read-only policy to the tokens when you either bind your application to your Vault service instance or when you create a new service key. When you add a read-only policy to a token, a user can read the token details but cannot create, update or delete the token.
For more information, see vault-service-managing-tokens.html#task_c42aa48c-c1b6-46a7-a8cf-70c3d654b82e.

The following new features were added.

Data Encryption: You can now use the Vault service for encryption and decryption of data used or generated by applications.
For more information, see vault-service-data-encryption.html#concept_670f83ca-205a-4f48-805e-2c22f9223247.
One Time Secret Sharing Capability: Vault service now provides APIs to support one time secret sharing capability by wrapping the secret value.
For more information, see vault-service-managing-paths-secrets.html#concept_c6b144c8-3bc7-4169-9d9f-8bde03c6a396.

The following new enhancement was added.

Availability of Service in Multiple Data Centers: The Vault service is now available in the Predix US-East domain (https://predix-io.run.asv-pr.ice.predix.io) and the Predix US-West domain (https://api.system.aws-usw02-pr.ice.predix.io).