Create Flows

Flows in Code Sign Manager - Self-Hosted allow you to enforce actions that must occur when using signing keys, and when creating, updating, or deleting Projects or Environments. There are two types of Flows available, both of which are described below.

Code Signing Flows

Code Signing Flows in CyberArk Code Sign Manager - Self-Hosted define the approvals that must be granted before a signing can take place using a given private key. As such, Code Signing Flows play a critical role in ensuring that private code signing keys are used only in ways that the Code Signing Administrator authorizes.

At their most relaxed, Code Signing Flows can be configured to require no approvals at all. On the other hand, they can also be configured to require multiple levels of approvals. In most companies, a variety of Code Signing Flows are needed to account for the various levels of trust and security demanded by different projects or different phases of projects.

Once created, Code Signing Flows can optionally be assigned to Environment Templates. If assigned to an Environment Template, any Environment that uses that Environment Template is subject to the restrictions set in the Flow. Flows can also be selected directly in Environments themselves.

Code Signing Change Management Flows

Code Signing Change Management Flows allow Code Signing Administrators to use Flows to enforce approvals for creating, updating, or deleting Projects and Environments.

The Flows for each of these scenarios can be set individually, giving Code Signing Administrators the ability to manage the different scenarios as their needs dictate. Similarly, the same Flow can be used for any number of these scenarios if that's what is needed.

Change Management Flows are set at the global project level, and as such, they apply to all Projects and Environments. The default Change Management Flow requires no approvals (with the exception of the Project Create Flow, which requires approval by default). Follow the steps in this section to create a Flow that includes approvals.

Next steps

To get started configuring Flow, first become familiar with the Flow user interface. From there, you can configure Code Signing Flows and Change Management Flows. Once the Flows are in place, you can assign them as necessary.