Security

Per-user scope

A credential resolution mode where each user brings their own key, resolved at session start.

also known as: credential scoping

In depth

Per-user is the default scope on Digitorn. Each user registers their own Anthropic key, the same YAML references the credential by name, the runtime looks up that user's value when their session starts. Two other scopes resolve at compile time and are baked into the bundle (system_wide, per_app_shared), one more adds an app-specific dimension (per_app_per_user). Per-user is what you want for almost everything.

Related concepts

Credential vaultAn encrypted store for API keys, tokens, and connection strings, referenced from YAML by name.Envelope encryptionAn encryption scheme where each row has its own data key, and that data key is wrapped by a master key.

Read the deep dive

How credentials work on Digitorn: an encrypted vault driven from YAML

Read article

Newsletter

Get the next post in your inbox.

Engineering notes from the Digitorn team. No marketing, no launch announcements, no "10 prompts that will change your life". Just the things we write that we'd want to read.

More in Security

Credential vault/glossary/credential-vault Envelope encryption/glossary/envelope-encryption KMS/glossary/kms OAuth flow/glossary/oauth-flow