2 Antworten
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
0
Hi,
Which language are you using, and from where are you planning to call the AWS Secret Manager API ?
You can sign you own request and directly call the GetSecretValue API action.
But keep in mind that you will then need to maintain this part of code and make sure that you are handling credentials discovery and usage properly.
beantwortet vor einem Jahr
0
If using lambdas, you can consider using Parameter and Secrets lambda layer which allows you to cache secrets in lambda side: https://aws.amazon.com/blogs/compute/using-the-aws-parameter-and-secrets-lambda-extension-to-cache-parameters-and-secrets/
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor einem Jahr
- AWS OFFICIALAktualisiert vor 3 Jahren
- AWS OFFICIALAktualisiert vor 2 Monaten
- AWS OFFICIALAktualisiert vor einem Jahr
Hi, I am using Java with Micronaut. In the article "sign you own request" the below line is mentioned in step 5: Credential=AKIAIOSFODNN7EXAMPLE/20220830/us-east-1/ec2/aws4_request, what does "AKIAIOSFODNN7EXAMPLE" signifies? Is there any recommended way to add this piece of information to the Micronaut application without any hard coding?
You should rely on an IAM instance profile to get temporary credentials if your application is running on an EC2 instance.
But again, the role of the SDK is to abstract and simplify this process and I would recommend using it. Do you have any specific size constraints that make the size of the SDK such an important factor ?