2回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
Hi,
Which language are you using, and from where are you planning to call the AWS Secret Manager API ?
You can sign you own request and directly call the GetSecretValue API action.
But keep in mind that you will then need to maintain this part of code and make sure that you are handling credentials discovery and usage properly.
回答済み 1年前
0
If using lambdas, you can consider using Parameter and Secrets lambda layer which allows you to cache secrets in lambda side: https://aws.amazon.com/blogs/compute/using-the-aws-parameter-and-secrets-lambda-extension-to-cache-parameters-and-secrets/
関連するコンテンツ
- AWS公式更新しました 1年前
- AWS公式更新しました 2ヶ月前
Hi, I am using Java with Micronaut. In the article "sign you own request" the below line is mentioned in step 5: Credential=AKIAIOSFODNN7EXAMPLE/20220830/us-east-1/ec2/aws4_request, what does "AKIAIOSFODNN7EXAMPLE" signifies? Is there any recommended way to add this piece of information to the Micronaut application without any hard coding?
You should rely on an IAM instance profile to get temporary credentials if your application is running on an EC2 instance.
But again, the role of the SDK is to abstract and simplify this process and I would recommend using it. Do you have any specific size constraints that make the size of the SDK such an important factor ?