Stack Overflow
Stack Overflow

Questions tagged [aws-secrets-manager]

AWS Secrets Manager helps encrypt, store, and retrieve credentials for your databases and other services. Instead of hardcoding credentials in apps, you can make calls to Secrets Manager to retrieve credentials whenever needed. Secrets Manager helps protect access to IT resources and data by rotating and managing access to secrets.

See also: What Is AWS Secrets Manager? - AWS Secrets Manager

864 questions
4
votes
2 answers

AWS CLI Secrets Manager Create Secret

I want to create a new secret in Secrets Manager. The secret needs to be a key/value pair. When I create the secret using the CLI it is stored as plaintext instead of as a key/value pair: aws secretsmanager create-secret --name github/oauthtoken \ …
Ken J
  • 877
  • 12
  • 21
4
votes
1 answer

How to implement zero-downtime key rotation

I have several micro-services running in AWS, some of which communicate with each other, some of them having external clients or being clients to external services. To implement my services I need a number of secrets (RSA key pairs to sign/verify…
JHH
  • 8,567
  • 8
  • 47
  • 91
4
votes
1 answer

Using AWS Secrets manager's Secret in Cloudformation

I want to export the read_only_user's password to the EC2 instance. How can I access the created password inside the UserData? Resources: ReadOnlyUserCredentials: Type: AWS::SecretsManager::Secret Properties: Name: !Sub…
SpaceX
  • 555
  • 1
  • 6
  • 16
4
votes
3 answers

How do I set the name of my AWS SageMaker repo user?

In the GitHub repo for my AWS SageMaker project, commits are labelled as being created by the user "EC2 Default User". How do I customize the name of this user in SageMaker so that it is used every time I start my Notebook Instance?
orome
  • 45,163
  • 57
  • 202
  • 418
4
votes
1 answer

How to manage master user credentials of aws RDS (created by cloudformation) in aws secrets manager service?

I have an RDS DB instance created by Cloudformation. Now I need to store its master user credentials as a secret in AWS secrets manager service with automatic rotation schedule enabled. Since, RDS instances created via AWS Cloudformation expect…
hari
  • 41
  • 1
  • 3
4
votes
2 answers

Where does AWS Secrets Manager get AWS Credentials?

I'm beginning to work with Secrets Manager and created my first secret in AWS. During the process, it gave me some sample code to work with. I put that in a small application and ran it. The code: String region = "us-east-1"; string secret =…
coach_rob
  • 877
  • 13
  • 28
4
votes
2 answers

"Failed to fetch a list of secrets" on AWS Secrets Manager console?

Has anyone noticed some unpredictable failures on AWS Secret Manager when trying to retrieve secret values? I'm using my own encryption key, and I've found that frequently, I am getting a "Failed to fetch a list of secrets" error on the AWS console…
SteveM
  • 66
  • 1
  • 3
3
votes
0 answers

How can I run an alembic migration on an aurora serverless v1 postgres from an ecs task?

I have an ecs task which is meant to run a database schema migration on an aurora serverless v1 in aws. According to most of the examples I've seen, the connection is enabled by saving the database url with the username and password in the alembic…
Boris
  • 716
  • 1
  • 4
  • 25
3
votes
1 answer

Allow a secret in secret manager for all lambda functions in a particular AWS account

I'd like to have a secret that can be access by all lambdas with different roles in an AWS account. One option would be to attach a policy that allows access to the secret to all the lambdas, but given that we have large number of lambdas, I was…
q_kim
  • 45
  • 5
3
votes
1 answer

What is the Azure Key Vault reference equivalent in AWS Secrets Manager?

There is a simple integration between Azure Key Vault and Azure Functions that automatically grabs the latest version of a secret and loads it as an environment variable: @Microsoft.KeyVault(VaultName=myvault;SecretName=mysecret) This entry needs…
user246392
  • 2,661
  • 11
  • 54
  • 96
3
votes
0 answers

Deploy ECS ApplicationLoadBalancedFargateService stuck [Possibly when loading Secrets]

When inejcting secrets to the Secrets object of the ApplicationLoadBalancedFargateService's taskImageOptions imported from sm.Secret.fromSecretCompleteArn (including 6 digit hypen), the deploy gets stuck and does not work. I have also tried…
Jp98
  • 63
  • 2
  • 5
3
votes
1 answer

Retrieve multiple aws secrete in spring boot app that have same keys

Have a spring boot app (with starter parent at 2.4.8). The app is connecting to multiple data sources, and the automated Jenkins job being used to create secrets across company does it such a way that although secrets names are different(per…
Arpit S
  • 137
  • 2
  • 10
3
votes
0 answers

Creating db connection string with credentials stored in AWS secrets manager

I'm trying to use EF Core in ASP.NET Core with db credentials stored in AWS Secrets Manager. I want to register dbContext like this: services.AddDbContext(options => options.UseSqlServer("connection_string")); In…
Kacper Gwiazdowski
  • 111
  • 4
3
votes
1 answer

AWS CDK Secrets Manger getting the full arn (python)

I am trying to create a canary resource that uses a script that needs a secret. I'm trying to add a policy statement to the canary role (which I'm creating as part of the cdk). To do this I need to get the secrets full arn, I can get the partial arn…
BrokenEyes
  • 192
  • 2
  • 18
3
votes
1 answer

AWS CDK Boto 3 Unit Testing - How to mock Boto3 secrets manager

Anyone have ideas on how to mock a boto3 secrets manager client's get_secret_value method in a separate method without passing the client to the method? Stuck on this for days, now. Any ideas, links to possible working code on github would be…
E K
  • 31
  • 1
1 2 3
57 58