Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hi there, we use self-hosted kratos installed via *helm*, we have some problem with hide super secret info for twilio api username, password, sms from params, according docs we need it configure via <https://www.ory.sh/docs/kratos/self-hosted/sms-messages>, we could inject it as plain text in values, but it is not secure, is any other way to do it more secure?

You can use something like HashiCorp Vault or any KMS to store/read your secrets and inject in your container. GKE and EKS have deep integrations with their KMS services.

It depends on you use case, what integration fits best to you.