Confidential storage agenda

When you install a new instance of CzechIdM, a new key must be generated for crypting all the values in confidential storage. The key can be changed through a long running task ChangeConfidentialStorageKey, the LRT you must start after change crypt key, as parameter will be given old confidential storage key.

Agenda in Settings (left menu), where confidential storage values are readable. It is in read only mode, so values cannot be changed, removed or added some more. Confidential storage permission is needed, otherwise you cannot get in confidential storage agenda. You have to create a new role and in tab Permissions add permission (entity type = Confidential storage, permission = READ). Now any user with this role assigned has access to Confidential storage agenda.

The confidential storage is currently used for:

The storage detail shows this information:

Devel guide