Tokenizer

Tokenizer

Secure configuration and secrets management for modern CI/CD pipelines. Replace environment-specific values automatically — no secrets in your repos, no secrets in your pipelines.

Request Access

How Tokenizer Works

From configuration to deployment — in four simple steps.

1

Define Environments

Create environments (Dev, Test, Production) and assign configuration keys with their values — strings, booleans, JSON, or YAML.

2

Generate Tokens

Tokenizer generates unique tokens for each configuration key. Use them as placeholders in your config files (e.g. appsettings.json).

3

Run the Pipeline

The Azure Pipelines plugin authenticates with a private API key, fetches tokens from Tokenizer, and replaces placeholders with real values.

4

Deploy Securely

Your application is deployed with correct, environment-specific configuration. Secrets never leave the secure vault until the moment of tokenization.

Key Capabilities

Everything you need to manage configuration and secrets across environments.

Multi-Environment Support

Manage separate configurations for Dev, Test, and Production. Each environment has its own set of keys and values — switch between them effortlessly.

Flexible Value Types

Store booleans, strings, full JSON structures, or YAML snippets. Tokenizer handles any configuration format your application needs.

Secure Keys

Mark keys as secure — they are encrypted at rest in the database and only decrypted at tokenization time. Secrets are never exposed in plain text.

Automatic Tokenization

Generate tokens for configuration keys and use them as placeholders in your files. Tokenizer replaces them with real values during deployment.

Azure Pipelines Plugin

A dedicated plugin for Azure Pipelines. Authenticate with a private API key, fetch tokens, and replace config values — all within your existing pipeline.

Zero Secrets in Pipelines

No more secrets stored in pipeline variables or YAML files. Tokenizer keeps secrets centralized and encrypted, away from your source code.

Security First

Tokenizer was built with security at its core. Your secrets stay protected at every stage.

Encrypted at Rest

Secure keys are encrypted in the database

API Key Auth

Private API keys for pipeline authentication

No Exposed Secrets

No secrets in repos or CI/CD configs

Access Control

Fine-grained API access control

Built for Azure Pipelines

A dedicated plugin integrates Tokenizer directly into your Azure DevOps pipeline. Authenticate, fetch, and replace — all in one step.

  • Authenticate using a private API key — no secrets in YAML
  • Fetch tokens and replace placeholders in config files automatically
  • Works with any file format — JSON, XML, YAML, .env, and more
  • Environment-aware — automatically selects the right configuration set
appsettings.json 
{
  "ConnectionStrings": {
    "Default": "#{DatabaseConnection}#"
  },
  "Jwt": {
    "Secret": "#{JwtSecret}#",
    "Issuer": "#{JwtIssuer}#"
  },
  "Logging": {
    "Level": "#{LogLevel}#"
  },
  "FeatureFlags": {
    "EnableBeta": #{EnableBeta}#
  }
}

Tokens like #{DatabaseConnection}# are replaced with real values at deployment time.

End-to-End Flow

See how configuration flows from Tokenizer to your deployed application.

Configure

Define keys & values per environment

Tokenize

Generate tokens as placeholders

Pipeline

Plugin fetches & replaces tokens

Deploy

App deployed with correct config

Stop managing secrets manually

Centralize your configuration, encrypt your secrets, and automate your deployments with Tokenizer.

Request Access See Pricing