ContextQMD
Back to Infisical

Twilio SendGrid

docs/documentation/platform/secret-rotation/sendgrid.mdx

0.159.252.3 KB
Original Source

Eliminate the use of long lived secrets by rotating Twilio SendGrid API keys with Infisical.

Prerequisite

You will need a valid SendGrid admin key with the necessary scope to create additional API keys.

Follow the SendGrid Docs to create an admin api key.

How it works

Using the provided admin API key, Infisical will attempt to create child API keys with the specified permissions. New keys will ge generated every time a rotation occurs. Behind the scenes, Infisical uses the SendGrid API to generate new API keys.

Rotation Configuration

<Steps> <Step title="Open Secret Rotation Page"> Head over to Secret Rotation configuration page of your project by clicking on `Secret Rotation` in the left side bar </Step> <Step title="Click on Twilio SendGrid Card" /> <Step title="Provide the inputs"> <ParamField path="Admin API Key" type="string" required> SendGrid admin API key with permission to create child scoped API keys. </ParamField> 
<ParamField path="Admin API Key" type="array" required>
	The permissions that the newly generated API keys will have. To view possible permissions, visit [this documentation](https://docs.sendgrid.com/api-reference/api-key-permissions/api-key-permissions).
	Permissions must be entered as a list of strings. 
	
	Example: `["user.profile.read", "user.profile.update"]`
</ParamField>
</Step> <Step title="Configure the output secret mapping"> When a secret rotation is successful, the updated values needs to be saved to an existing key(s) in your project. <ParamField path="Environment" type="string" required> The environment where the rotated credentials should be mapped to. </ParamField> 
<ParamField path="Secret Path" type="string" required>
	The secret path where the rotated credentials should be mapped to.
</ParamField>

<ParamField path="Interval" type="number" required>
	What interval should the credentials be rotated in days.
</ParamField>

<ParamField path="API KEY" type="string" required>
	Select an existing select key where the newly rotated API key will get saved to.
</ParamField>
</Step> </Steps>

Now your output mapped secret value will be replaced periodically by SendGrid.