Connect Quorum Key Manager
Codefi Orchestrate uses Quorum Key Manager (QKM) as a key management service. Use the following environment variables to configure QKM when starting the Orchestrate Transaction Sender and Orchestrate Gateway.
tip
Configure each microservice using microservice-specific environment variables. Command line options are also available and take precedence over environment variables.
Configuration
| Environment variable | Command line option | Description |
|---|---|---|
KEY_MANAGER_URL | key-manager-url | URL of Quorum Key Manager |
KEY_MANAGER_METRICS_URL | key-manager-metrics-url | URL of Quorum Key Manager metrics |
Authentication
You can configure authentication using the following environment variables.
| Environment variable | Command line option | Description |
|---|---|---|
KEY_MANAGER_API_KEY | key-manager-api-key | API key of the HTTP authentication |
KEY_MANAGER_CLIENT_TLS_CERT | key-manager-client-tls-cert | Path to the TLS authentication certificate file |
KEY_MANAGER_CLIENT_TLS_KEY | key-manager-client-tls-key | Path to the TLS authentication key file |
KEY_MANAGER_TLS_SKIP_VERIFY | key-manager-tls-skip-verify | Set to true to skip TLS authentication verification |
If user credentials, such as JWTs, are provided, Orchestrate forwards them to Quorum Key Manager.
Ethereum Store
| Environment variable | Command line option | Description |
|---|---|---|
KEY_MANAGER_STORE_NAME | key-manager-store-name | Quorum Key Manager Store |