Managing secrets in AWS Lightsail container service

Question

Hello,
I would like to host my backend application using the Lightsail container service using docker image and Github CI/CD (Build the image, push it to lightsail, create deployment). The application should have few secrets  like RDS credentials, external services API keys etc. How can I manage those secrets? 
I know I can use environment variables when creating the deployment, but that doesn't seem secure, as those variables are visible as plain text in the console.
That doesn't seem like the best approach.

Answer

Hi,

Take a look at AWS Secrets Manager https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html and AWS Systems Manager Parameter Store https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-parameter-store.html. Those are services to securily store secrets.

I hope it helps.

Managing secrets in AWS Lightsail container service

相關內容