Update secrets sequences

Author: jyecusch

docs/architecture/buckets.mdx

@@ -87,7 +87,7 @@ classDef edgeLabel line-height:2;
 
 ### Build Sequence
 
-Below is a sequence diagram showing the sequence of events that occur when a developer registers a bucket with Nitric. Including, optionally registering event handlers for file change events.
+Below is the sequence of events that occur when a developer registers a bucket with Nitric. Including, optionally registering event handlers for file change events.
 
 ```mermaid
 sequenceDiagram
@@ -119,7 +119,7 @@ sequenceDiagram
 
 ### Runtime Sequence
 
-Below is a sequence diagram showing the runtime flow of a storage operation in a Nitric application, using the Nitric SDK. The SDK forwards the request to the Nitric runtime, which converts the request and forwards it to the cloud storage API. The plugin nature of the Nitric runtime allows for seamless integration with different cloud providers.
+Below is the runtime flow of a storage operation in a Nitric application, using the Nitric SDK. The SDK forwards the request to the Nitric runtime, which converts the request and forwards it to the cloud storage API. The plugin nature of the Nitric runtime allows for seamless integration with different cloud providers.
 
 ```mermaid
 sequenceDiagram

docs/architecture/secrets.mdx

@@ -70,26 +70,43 @@ classDef edgeLabel line-height:2;
 
 ## 2. Sequence
 
+### Build Sequence
+
+Below is the sequence of events that occur when a developer registers a secret with Nitric. This includes defining the secret and its access requirements, which are then provisioned by the Nitric provider using IaC.
+
+```mermaid
+sequenceDiagram
+    participant Worker as App Worker(s)
+    participant SDK as Nitric SDK
+    participant Nitric as Nitric CLI
+    participant Provider as Nitric Provider <br> (plugin)
+    participant IAC as IaC <br> (e.g. Terraform)
+
+    Worker->>SDK: Register Secret
+    Worker->>SDK: Register Access Requirements
+    SDK->>Nitric: Register Secret
+    SDK->>Nitric: Register Access Requirements
+
+    Nitric->>Provider: Forward Nitric Spec
+    Provider->>IAC: Provision Secret
+    Provider->>IAC: Provision IAM
+```
+
+### Runtime Sequence
+
+Below is a sequence diagram showing the runtime flow of a secret operation in a Nitric application, using the Nitric SDK. The SDK forwards the request to the Nitric runtime, which converts the request and forwards it to the cloud secrets management API. The plugin nature of the Nitric runtime allows for seamless integration with different cloud providers.
+
 ```mermaid
 sequenceDiagram
-    participant Client as Client
-    participant NitricSDK as Nitric SDK
-    participant NitricRuntime as Nitric Runtime
-    participant SecretManager as Cloud Secret Manager (e.g., AWS Secrets Manager, GCP Secret Manager)
-
-    Client->>NitricSDK: Perform secret operation (e.g., get, set, delete)
-    NitricSDK->>NitricRuntime: Forward secret API call
-    NitricRuntime->>SecretManager: Execute secret operation
-
-    alt Successful Operation
-        SecretManager-->>NitricRuntime: Return result (e.g., secret value, success status)
-        NitricRuntime-->>NitricSDK: Return result
-        NitricSDK-->>Client: Return result to client
-    else Failure
-        SecretManager-->>NitricRuntime: Return error
-        NitricRuntime-->>NitricSDK: Forward error
-        NitricSDK-->>Client: Return error response
-    end
+    participant Client as App Code
+    participant SDK as Nitric SDK
+    participant Nitric as Nitric Runtime <br> (plugin)
+    participant CloudAPI as Secrets Management <br> (e.g. AWS Secrets Manager)
+
+    Client->>SDK: Access()
+    SDK->>Nitric: Forward Request
+    Nitric->>Nitric: Convert Request
+    Nitric->>CloudAPI: Secrets Management Request
 ```
 
 ## 3. Component