Configure Secure Token Service

D toc

The Secure Token Service manages the use of secure tokens in the

D s platform

for use with third-party systems. This service is used for:

Authentication with Azure Key Vault. For more information, see Configure Azure Key Vault.
OAuth2 authentication with third-party systems. For more information, see Enable OAuth 2.0 Authentication.

Configure

Info
NOTE: Except in rare cases, the other properties for secure token service do not need to be modified.

D s config

Configure the following properties:

Property Description

"secure-token-service.enabled" Set this value to true. It is enabled by default.

" secure-token-service.autorestart"

Set this value to true to enable auto-restarting of the secure token service.

"secure-token-service.port" Set this value to 41921.

"com.trifacta.services.secure_token_service. refresh_token_encryption_key"

Enter a base64 string to serve as your encryption key for the refresh token of the secure token service.

A default encryption key is inserted for you.

Info
NOTE: If a valid base64 string value is not provided here, the platform fails to start.

"com.trifacta.services.secure_token_service.user_id_salt"

Enter a base64 string to serve as an encryption key for user IDs that are passed to the secure token service to return tokens.

Info
NOTE: This value must be specified with a non-empty string.

"secure-token-service.userIdHashingPepper" Enter a base64 string.

Save your changes and restart the platform.

Logging

You can configure how logging is managed for the secure token service. For more information on configuring logging, see Configure Logging for Services.

D s also

inCQL	true
label	((label = "token") OR (label = "security"))

Page tree

Versions Compared

Old Version 1

New Version 2

Key

Configure

Logging