We should have a mechanism that allows applications to programatically retrieve secrets (passwords, passphrases, tokens, etc) without having to store them locally or hardcoded.

Ideally this should allow apps to retrieve these secrets through an API, environment variables or ephemeral local files mounted at run time.