• Sebastian Labrador

Heroku Credential Rotation Requirement

Updated: Aug 14, 2020

Dear valued Ignite users,

In the event of a Heroku Security breach, partners need to have an ability to rotate keys for their install base. This is an “At-Will” exercise to protect Heroku and Partner customers. Heroku will notify you accordingly.

Partners will be asked by Heroku to perform credential rotation activities which may require a restart of "dynos" with the CG Ignite Editor Add-on attached. Though we don't anticipate the need to do this, it is a great practice to rotate security keys on your own. That is why the Ignite team will be providing a convenient method to do this key rotation on your own in the unlikely event of a Heroku breach. Until then, we'll make sure you are properly notified before performing this kind of activity.

In Case of Breach, We Will Perform Necessary Steps

As a Partner, Ignite will perform the following steps to rotate keys when asked by Heroku:

  1. Regenerate our Add-on OAuth credentials that interact with Heroku's Partner API

  2. Update appropriate manifest and configuration files in Ignite's environment

  3. Roll-out a "Heroku Config Var" update to your Ignite Runtime that was generated when your Add-on was originally provisioned (this step automatically restarts your "dyno" within seconds)

New User Impact

New users who attach the add-on after a credential roll will not be affected.

Existing User Impact

Only your login to the Add-on may be affected by this potential change. Your existing application flows may be impacted only when the dyno restarts from the resulting Config Var update in Step 3. Note that existing credentials will be temporarily allowed until new credentials are in place.

If you have any questions, please email support.


Ignite Team

31 views0 comments

Recent Posts

See All

Protecting your private information is our priority. This Statement of Privacy applies to and Cyber Group Inc and governs data collection and usage. For the purposes of this Privacy P

Your use of the Service is subject to this Acceptable Use Policy. If you are found to be in violation of our policies at any time, as determined by Cyber Group Inc in its sole discretion, we may warn

Hello again! As promised, we are here with our latest set of nodes for Salesforce Commerce Cloud's Integration with Ignite. These nodes can not only make your job easier consuming Commerce Cloud APIs