kvlt-maxconf-prod
kvlt-maxconf-test
:::
Key Vaults are used for secret management. API Management, Function App, and the custom application code all rely on secrets stored in Key Vault.
| Key Vault | Resource Group | Purpose | Access |
|---|
| kvlt-maxconf-test | rg-application-test | Secrets for test environment (Function App, APIM) | Maximus only |
| kvlt-maxconf-prod | rg-application | Secrets for production environment (Function App, APIM) | Maximus only |
| kv-maxconf-external | rg-shared-resources | Externally accessible vault for IDIM’s BCSC Video API servers to authenticate to MaxConf API. | IDIM only |
This Key Vault is accessible to IDIM colleagues at the Government of BC. It is used by their BCSC Video API servers to obtain credentials for authenticating against and communicating with the MaxConf API (pexip-sdk) deployment. Rooms retrieved through their servers are returned to BCSC Mobile App users when citizens need to connect to the verify-by-video service provided by Maximus on behalf of the Government of BC.
Note: Maximus developers do not have access to this vault. All credential management for IDIM’s integration is handled by their operations team.
Connection string that allows connectivity between the Application Insights, API, and Function App layers.
Reference ID for Service Principal in Entra that allows OAuth2 Token Generation
Secret for the above Service Principal in Entra that allows OAuth2 Token Generation
Azure Function App key that allows execution of the Edge deployment slot of the Test Function App
Pexip password used for Event Sink communication
Pexip username used for Event Sink communication
Azure Function App key that allows execution of the Prod / Test Function App (Depends on source key vault)
Reference ID for accessing Pexip endpoint that allows JWT Token Generation
Base64-encoded token for accessing Pexip endpoint that allows JWT Token Generation
Azure Tenant ID. Unique identifier used in many Azure processes.