feat: add secret management

officialasishkumar · officialasishkumar · commit b5ec6fc38079 · 2025-08-13T16:49:30.000+05:30
Signed-off-by: Asish Kumar &lt;officialasishkumar@gmail.com&gt;
diff --git a/versioned_docs/version-3.0.0/running-keploy/configuration-file.md b/versioned_docs/version-3.0.0/running-keploy/configuration-file.md
@@ -238,6 +238,27 @@ The tests section enables you to specify conditions for recording tests during A
 
 You can use the **`path`**, **`urlMethods`**, **`headers`**, and **`host`** filters together or independently based on your testing scenarios. This flexibility allows you to precisely define the conditions under which tests are recorded.
 
+### Managing Secrets with `secret.yaml`
+
+Keploy allows you to manage sensitive information like API keys or tokens securely, without hardcoding them into your test files. This is done using a `secret.yaml` file within each test set directory.
+
+1.  **Create `secret.yaml`**: Inside your test set directory (e.g., `keploy/test-set-0/`), create a file named `secret.yaml`.
+
+2.  **Define Your Secrets**: Add your secrets as key-value pairs.
+    ```yaml
+    Authorization: Bearer xyz.abc.123
+    ```
+
+3.  **Use Secrets in Tests**: Reference these values in your test cases or mocks using the `{{.secret.KEY}}` syntax.
+    ```yaml
+    # inside a test-case.yaml
+    ...
+    header:
+        Authorization: '{{string .secret.Authorization }}'
+    ...
+    ```
+For your security, Keploy will automatically add `/*/secret.yaml` to your `.gitignore` file to prevent accidentally committing secrets.
+
 ### Bypass Rules Section
 
 The `bypassRules` section in the Keploy-config file allows you to define parameters for bypassing and mocking API calls.
@@ -378,4 +399,4 @@ Congratulations! You've now explored the features and configuration options prov
 
 Now armed with Keploy-config, you are ready to embark on a more organized and productive journey of recording and testing APIs with Keploy. Feel free to explore additional features, customize configurations, and refer to the [CLI Command Docs](http://keploy.io/docs/running-keploy/cli-commands/) for more details on available flags and parameters.
 
-Happy testing and may your APIs always return the expected results! 🚀
+Happy testing and may your APIs always return the expected results! 🚀
