Provider Constraints
Azure Key Vault & AWS Secrets Manager Naming Limits & Rules
Each cloud provider enforces different limits on secrets, tags, and naming. SatisVault validates everything client-side so you never hit a cryptic API error.
Tag Key Validation
| Rule |
Azure
|
AWS
|
GCP
|
|---|---|---|---|
| Max length | 512 characters | 128 characters | Coming soon |
| Allowed characters | Any (no restriction) | Letters, numbers, _ . : / = + - @ |
Coming soon |
| Reserved prefix | None | aws: is forbidden |
Coming soon |
| Duplicate detection | Case-insensitive | Case-sensitive | Coming soon |
Tag Value & Count
| Rule |
Azure
|
AWS
|
GCP
|
|---|---|---|---|
| Max value length | 256 characters | 256 characters | Coming soon |
| Value characters | Any (no restriction) | Letters, numbers, _ . : / = + - @ |
Coming soon |
| Reserved prefix | None | aws: is forbidden |
Coming soon |
| Max tags per secret | No limit | 50 | Coming soon |
Secret Name & URL Tags
| Rule |
Azure
|
AWS
|
GCP
|
|---|---|---|---|
| Secret name characters | Validated server-side | Letters, numbers, / _ + = . @ ! - |
Coming soon |
| Secret name prefix | None | aws/ is forbidden |
Coming soon |
| URL tag values | Any valid URL | No ? & # % characters |
Coming soon |
SatisVault enforces all provider-specific limits before any API call is made. You get clear, inline error messages - no guessing why a request failed.
Ready to Take Control of Your Vault?
Discover vaults, manage secrets and tags, auto-detect credentials by URL - all from your browser.