Kin Capital · Mission Control
Tickets·PRJ00004·Kin Capital·TASK00023

Vault encryption at rest — pgcrypto + Supabase Vault key + reveal RPC

Description

pgcrypto + a Supabase Vault key; a BEFORE INSERT/UPDATE trigger encrypts secrets; reveal_vault_secret / decrypt_vault_secret RPCs decrypt on demand (service-role only) and every reveal is logged. Migrations ...0004 + ...0007.

Thread

1

  • App write paths unchanged — the trigger encrypts transparently; only reveal/share decrypt. Verified round-trip on seeded secrets.

    Saied Mohammed · 2d ago

Details

Status
Done
Priority
High
Assignee
Saied Mohammed
Due date
Updated
2d ago
Project
AI Mission Control — Internal CRM / PM / Ticketing Platform

POCs

0
  • No POCs yet.

Duplicate

Copy this ticket into another project as a new ticket number.