Stack Overflow
Stack Overflow

Questions tagged [aws-secrets-manager]

AWS Secrets Manager helps encrypt, store, and retrieve credentials for your databases and other services. Instead of hardcoding credentials in apps, you can make calls to Secrets Manager to retrieve credentials whenever needed. Secrets Manager helps protect access to IT resources and data by rotating and managing access to secrets.

See also: What Is AWS Secrets Manager? - AWS Secrets Manager

864 questions
4
votes
1 answer

Export secret name in cloudformation template

I am creating a secret using a Cloudformation template, the problem that I have is that the only value that can be exported is the ARN using Ref Is there a way to get the name of the secret? I tried using !GetAtt LogicalIdOfSecret but that doesn’t…
Pablo Arriola
  • 334
  • 3
  • 15
4
votes
1 answer

What is the on-premise equivalent of an Azure key vault?

As I am a programmer with solely experience with production environments in the cloud that run with a cloud-based secret manager, I was wondering: How are secrets managed in an on-premise instance? I bet they are not just written in the application…
Rauf Akdemir
  • 61
  • 1
  • 5
4
votes
1 answer

How to use AWS secret manager with Amplify

I have AWS Amplify Apps and currently the passwords are stored in Amplify environment variables. I am trying to use AWS secret manager to store my secrets and use it in my Amplify project I checked AWS documentation…
MJ X
  • 8,506
  • 12
  • 74
  • 99
4
votes
2 answers

AWS Secrets manager in Nest JS microservice (lambda) fails periodically

I'm having a lambda function made with NestJS's microservice. It uses a database connection and I'm using a secret service to fetch connection details for it. Here's my app module: @Module({ imports: [ ConfigModule, …
Konstantin Bodnia
  • 1,372
  • 3
  • 20
  • 43
4
votes
3 answers

Retrieving RSA key from AWS Secrets Manager in CodeBuild corrupts key "invalid format"

During a CodeBuild run I am retrieving a rsa key from SecretsManager, which is the private key to use to access private sources in BitBucket. To do this I have copied the private key into a secret, then in my buildspec file I have the following…
KickinMhl
  • 1,218
  • 3
  • 14
  • 32
4
votes
1 answer

AWS secret manager Password Rotation Without Restarting Spring boot application

Requirement Remove DB credentials from Java Code(property files) to AWS SM. Implement autorotation of DB credentials. Problem Statement Though we are able to retrieve DB credentials from AWS SM from our application, but we are facing below issues…
Rajeev
  • 103
  • 1
  • 2
  • 14
4
votes
1 answer

Fargate container_definition field "secretOptions" not passsing datadog API_KEY to logConfiguration

I'm trying to send my ECS Fargate logs to Datadog. To do this I need to pass my Datadog API_KEY as a field in the logConfiguration object. I need to secure my API_KEY so I am using AWS Secrets Manager via the secretOptions key of the…
Sogun
  • 301
  • 4
  • 10
4
votes
2 answers

AWS Secret Manager Update

Is there any possible method by which i can update key/values in AWS Secret Manager without having to retrieve the current values and then updating them? The current solutions i have found first retrieve the value from secrets…
Aditya Nair
  • 514
  • 1
  • 9
  • 18
4
votes
1 answer

Error: setSecret: Unable to log into database with previous, current, or pending secret when configuring credential rotation in AWS

I created a rotation Lambda manually by using MySQL template, after kicking off the rotation, it gave me error: [ERROR] ValueError: Unable to log into database with previous, current, or pending secret of secret I found this solution and tried but…
wawawa
  • 2,835
  • 6
  • 44
  • 105
4
votes
2 answers

Question about Lambda execution role when configuring credential rotation for Secret Manager

I created a rotation function manually and linked it to Secret Manager, I've managed to enable the rotation but when I checked the logs in CloudWatch for this rotation lambda, it showing me error: [ERROR] ClientError: An error occurred…
wawawa
  • 2,835
  • 6
  • 44
  • 105
4
votes
1 answer

How do you reference a an aws secrets manager secret "value", and apply this to a code build buildspec command?

I am able to retrieve the secret in the buildspec (given https://aws.amazon.com/about-aws/whats-new/2019/11/aws-codebuild-adds-support-for-aws-secrets-manager/): secrets-manager: secret_key_param: secret_name However, when doing so, it gives:…
OneMoreNerd
  • 463
  • 1
  • 6
  • 19
4
votes
1 answer

How to setup Localstack container not requiring credentials?

I have following code snippet, that is supposed to run in a AWS Lambda function: AWSSecretsManager client = AWSSecretsManagerClientBuilder.standard().withRegion(AWS_REGION).build(); GetSecretValueRequest getSecretValueRequest = new…
Ira Re
  • 730
  • 3
  • 9
  • 25
4
votes
2 answers

How to use new secret created by key rotation from AWS Secrets Manager

I have a Java application using MongoDB (or it could be any service like that). On start up, the app creates a singleton connection to database. To connect, I get the MongoDB from AWS Secrets Manager... and thus the application runs merrily ever…
Apurva Singh
  • 4,534
  • 4
  • 33
  • 42
4
votes
2 answers

How do I retrieve multiple AWS Security Secrets?

Using spring-cloud-starter-aws-secrets-manager-config to retrieve AWS secrets at application start up. After defining multiple secrets in AWS secrets manager I cannot see how I can define multiple mappings to map those secrets. bootstrap.yml aws: …
user10405172
  • 51
  • 1
  • 4
4
votes
1 answer

How to avoid having plaintext master-passwords for RDS when deployed through terraform and How to retrieve password to use it in a server

I'm new to stack overflow. Apologize if I didn't format it right. I'm currently using terraform to provision aurora-rds. Problem is, I shouldn't be having the db master-password as a plaintext sitting in the .tf file. I've been using this config…
user11411591
  • 77
  • 2
  • 3
  • 9
1 2 3
57 58