Skip to main content

Platform

The Request Manager Agent uses resources like a credentials manager and cloud storage to facilitate data subject request processing. A credentials manager stores client credentials, connection strings, PEM keys, API tokens, etc. that the Agent will use to connect to other resources. A cloud storage bucket stores the results of requests so that Personally Identifiable Information (PII) never leaves your private network.

Setup

The DATAGRAIL_AGENT_CONFIG environment variable requires a parameter called platform that will be used to denote the credentials manager and cloud storage that the Agent should use.

Platform

Fields
credentials_managerobject(CredentialsManager) (required)
Credentials manager settings.
storage_managerobject(StorageManager) (required)
Cloud storage settings.
JSON Representation 
{
    "credentials_manager": {
        object(CredentialsManager)
    },
    "storage_manager": {
        object(StorageManager)
    }
}

CredentialsManager

Fields
providerenum(CredentialsManagerProvider) (required)
The credentials manager provider.
optionsobject(CredentialsManagerOptions) (optional)
Metadata about the credentials manager.
JSON Representation 
{
    "provider": enum(CredentialsManagerProvider),
    "options": {
        object(CredentialsManagerOptions)
    }
}

CredentialsManagerProvider

Enums
AWSSSMParameterStoreAmazon Web Services Parameter Store.
AWSSecretsManagerAmazon Web Services Secrets Manager.
AzureKeyVaultMicrosoft Azure Key Vault.
GCPGoogle Secret Manager.
JSONFileJSON file for secrets injection.

CredentialsManagerOptions

Fields
secret_vaultstring (optional)
Specifies the vault name. Required when using AzureKeyVault.
project_idstring (optional)
Specifies the project ID. Required when using GCP.
filenamestring (optional)
Specifies the file location/name. Required when using JSONFile.
JSON Representation 
{
    "secret_vault": string,
    "project_id": string,
    "filename": string
}

StorageManager

Fields
providerenum(StorageManagerProvider) (required)
The cloud storage manager provider.
optionsobject(StorageManagerOptions) (optional)
Metadata about the storage manager. Required for some providers.
JSON Representation 
{
    "provider": enum(StorageManagerProvider),
    "options": {
        object(StoragesManagerOptions)
    }
}

StorageManagerProvider

Enums
AWSS3string Amazon Web Services S3
AzureBlobstring Microsoft Azure Blob
BackblazeB2string Backblaze B2
GCPCloudStorestring Google Cloud Storage

StorageManagerOptions

Fields
bucketstring (required)
The name of the cloud storage bucket
project_idstring (optional)
Required when using AzureBlob or GCPCloudStore to denote the project ID.
regionstring (optional)
Required when using BackblazeB2 to denote the region.
endpointstring (optional)
Required when using BackblazeB2 to denote the endpoint.
JSON Representation 
{
    "bucket": string,
    "project_id": string,
    "region": string,
    "endpoint": string
}

 

Need help?
If you have any questions, please reach out to your dedicated CSM or contact us at support@datagrail.io.

Disclaimer: The information contained in this message does not constitute as legal advice. We would advise seeking professional counsel before acting on or interpreting any material.