Home Explore Help
Register Sign In
wxcz_admin
/
flowsint-cn-git
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 0916905e31
Branches Tags
flowsint-cn-git
/
docs
/
getting-started
/
vault.mdx

vault.mdx 2.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758 
  1. ---
    2. 

  2. title: "Vault"
    3. 

  3. description: "Quick start guide to using the Vault to secure your services API keys and secrets."
    4. 

  4. category: "Getting started"
    5. 

  5. order: 6
    6. 

  6. author: "Flowsint Team"
    7. 

  7. tags: ["tutorial", "getting-started", "vault"]
    8. 

  8. version: "1.2.8"
    9. 

  9. last_updated_at: "2026-05-15"
    10. 

  10. ---
    11. 

  11. 

  12. ## What is the Vault
    13. 

  13. 

  14. A good amount of the tools you'll be using in Flowsint require third party API keys.
    15. 

  15. 

  16. The **Vault** (*"Coffre fort"* in french) is the place to centralize and securely store those API keys. 
    17. 

  17. Weither you have a local instance of Flowsint or one fully deployed on a distributed system, you need to have your keys securely stored.
    18. 

  18. 

  19. ## Adding a key
    20. 

  20. 

  21. In the Flowsint enricher ecosystem, the API keys follow a specific format, being in uppercase letters, and with a declarative name that follows `<service>_API_KEY`.
    22. 

  22. 

  23. ## Current limitations
    24. 

  24. 

  25. For now, we cannot match a particular key from the Vault to an enricher **directly from the UI**. The enricher declares the API key variable name it requires, like the following in the core of the Enricher:
    26. 

  26. 

  27. ```python
    28. 

  28. @classmethod
    29. 

  29.     def get_params_schema(cls) -> List[Dict[str, Any]]:
    30. 

  30.         """Declare required parameters for this enricher"""
    31. 

  31.         return [
    32. 

  32.             {
    33. 

  33.                 "name": "PDCP_API_KEY",
    34. 

  34.                 "type": "vaultSecret",
    35. 

  35.                 "description": "The ProjectDiscovery Cloud Platform API key for asnmap.",
    36. 

  36.                 "required": True,
    37. 

  37.             },
    38. 

  38.         ]
    39. 

  39. ```
    40. 

  40. 

  41. This is a known limitation and we are working on improving this. 
    42. 

  42. 

  43. In the meanwhile, here is a list of the needed keys to run Flowsint at it's full potential:
    44. 

  44. 

  45. ```bash
    46. 

  46. # for enrichers
    47. 

  47. WHOXY_API_KEY # Whoxy domain search engine [WHOXY]
    48. 

  48. PDCP_API_KEY # ProjectDiscovery Cloud Platform [ASNMAP], [NAABU] etc
    49. 

  49. HIBP_API_KEY # HaveIBeenPwned API key [HIBP]
    50. 

  50. ETHERSCAN_API_KEY # Etherscan crypto API key [ETHERSCAN]
    51. 

  51. # for Flo, AI assistant
    52. 

  52. MISTRAL_API_KEY
    53. 

  53. # but other providers will be supported soon (ChatGPT, etc.)
    54. 

  54. ```
    55. 

  55. 

  56. There are also some other tools that could need a bunch of other API keys like [Subfinder](https://github.com/projectdiscovery/subfinder). Configuring them is not possible for now, but will be soon.
    57. 

  57. 

  58. Stay tuned for updates as those mechanisms may vary in the future, as the goal is to keep the user experience as smooth as possible.
    59.