API Dashboard
Vonage.com
Pricing
Support
Documentation
Blog
Code Hub
View All docs
Vonage Cloud Runtime
Overview
Getting Started
Introduction to Cloud Runtime
Working in the Cloud
Working Locally
Debugging
Deploying
Managing Projects
Guides
Overview
Configuration File
Sessions
Secrets
Integrating the Server SDKs
Providers
Overview
Voice
Messages
Conversation
State
Queue
Scheduler
Assets
Code Snippets
Global Functions
Get Account State
Get Instance State
Get your Application URL
Use the Logger
Create a Session
Get Sessions
Create a Vonage JWT
Unsubscribe from Webhooks
Voice
Handle an Incoming Call
Handle Call Events
Get a Call Recording
Messages
Listen for Incoming Messages
Listen for Incoming Events
Conversation
Listen for Conversation Events
State
Key-Value State Operations
Table State Operations
List State Operations
Queue
List Queues
Create a Queue
Get a Queue
Update a Queue
Delete a Queue
Pause a Queue
Resume a Queue
Add Queue Tasks
Dead Letter Queue
Scheduler
Schedule a Callback
Cancel a Scheduled Callback
Get a Scheduled Job
Get all Scheduled Jobs
Assets
Create a Directory
Upload Files
Remove a File or Directory
List Files and Directories
Generate a File's Link
Get a File
Release Notes
SDK Release Notes
CLI Release Notes
Platform Release Notes

Secrets

Vonage Cloud Runtime Secrets allow you to store sensitive information for use in your projects, such as API keys for third-party services. Secrets are managed through the Vonage Cloud Runtime CLI.

Creating a Secret

To create a secret, you can use the Vonage Cloud Runtime CLI secrets create command.

vcr secrets create --name $NAME --value $VALUE

So to create a secret FOO with the value bar:

vcr secrets create --name FOO --value bar

You can also add files as secrets:

vcr secrets create --name $NAME --file $FILE_PATH

Accessing your Secrets

To access a secret in your instance, you need to add it to your configuration file to expose it. Add a environment key to your configuration file with a list of the secrets you want to expose and a name to refer to them by:

Now that the secret is in your configuration file, they will be injected into your instance when you run the Vonage Cloud Runtime debugger or deploy your project. So to use the example of FOO in your application you would write:

const fooValue = process.env.FOO_SECRET;

Updating Secrets

Updating secrets works similarly to creating secrets, but to update you use vcr secrets update:

vcr secrets update --name $NAME --value $NEW_VALUE

To update the FOO example:

vcr secrets update --name FOO --value baz

Removing Secrets

Secrets can be removed using vcr secrets remove:

vcr secrets remove $NAME

To remove the FOO example:

vcr secrets remove FOO

Working with Secrets Locally

When you are debugging your project locally, you will not have access to the secrets stored on the Vonage Cloud Runtime platform. It is recommended that you create a .env file in your project directory and add your development secrets there:

export FOO=BAR
export BAZ=BAT
export X=Y

Then before you start debugging run:

source .env

The environment variables need to be set in the same shell process that you are running the Vonage Cloud Runtime debugger in.

This will export the development secrets in your current terminal shell process, allowing the debugger to access them.

Navigation

Secrets
Creating a Secret
Accessing your Secrets
Updating Secrets
Removing Secrets
Working with Secrets Locally