Custom Backup Encryption Key
By default, backups are encrypted with an encryption key that is generated by the a9s Backup Manager and unique for each
Service Instance.
The Application Developer can customize the backup encryption key for each Service Instance in the a9s Service Dashboard
or via the a9s Public API V1.
By default the minimum length for the customized encryption key is 8.
Set minimum length for custom encryption key
You can configure a minimum length for the backup encryption keys that Application Developers can set in the a9s Service Dashboard or via the a9s Public API V1.
Configuration
You can use the Ops file backup-service-min-key-length.yml
and the variable custom_encryption_key_min_length to set the minimum length.
When the backup downloads are disabled by using the disable-backup-download.yml Ops file, it is still possible to change
the encryption keys, using the prepare-disaster-recovery endpoint. This can cause some operational issues, specially if
there are multiple Platform Operators working on a team. These changes must be done having this in consideration. For
more information about this, check Service Dashboard documentation.