I am developing multiple Bonita processes that need to connect to different REST APIs using the same credentials.
- How can we share the credentials for those REST APIs across multiple processes (like universal parameters)?
- What is the best way to store the credentials and prevent that it is visible in the Portal? (We are currently using the PROCESS PARAMETERS, but they are visible in the Portal Processes page and need this info hidden)
- How can we modify those credentials and replicate the change across all of the processes? (In case the credentials change)
Deployment using "global parameters" can be done using BCD. See BCD documentation
However, it's not the same as a real "global parameter", it only set the parameter on deployment, update of thoses parameters should still be done for each processes.
There are no Secret management feature inside the Bonita Platform. That could be implemented using an external service and e.g. connectors to retrieve credentials when needed.
When using the "global parameters" from BCD, the global parameter is set only on deploy of the process. To update that, new version of processes should be deployed.
In my opinion, retrieving credentials from a proper secret manager when it is required would be more secure because the platform does not provide a secure storage solution. It would also avoid the complexity of having to update the credentials inside all processes when the credential change.
Bonitasoft empowers development teams with Bonita, the open-source and extensible platform to solve the most demanding process automation use cases. The Bonita platform accelerates delivery of complex applications with clear separation between capabilities for visual programming and for coding. Bonita integrates with existing solutions, orchestrates heterogeneous systems, and provides deep visibility into processes across the organization.