Reputation: 95
Retrieve AWS SM secrets and export to container environment variable
Can anyone suggest what's the best way to retrieve AWS secrets-manager secrets from Dockerfile and send the secret values to Docker container as environment variables after Docker ran.
The reason behind why I am asking this, I am trying to remove all sensitive password information hard coded in different places of git code repository and move the passwords to AWS secrets-manager.
Upvotes: 1
Views: 3779
Answers (2)
Reputation: 361
https://github.com/s12v/secure-exec is a similar tool, which supports the Secrets Manager (including JSON).
As mentioned above, with ECS there's no need in such tools.
Upvotes: 1
Reputation: 9854
Take a look at ssm-env, which populates ENV vars from Parameter Store. There is an example of using it with Docker.
If you are using ECS, there is built-in support for this.
Upvotes: 0
Related Questions
- Parsing secrets from AWS secrets manager using AWS cli
- Docker secrets passing as environment variable
- Set AWS Secret Manager value in docker environment
- ECS with Docker Compose environment variables
- Export environment variables inside docker container
- Getting AWS parameter store secrets inside ecs-cli compose docker container
- Concatenate AWS Secrets in aws-cdk for ECS container
- Can I use docker secrets within AWS ECS infrastructure?
- How to maintain secrets used in Dockerfile?
- How to use AWS ECS to get Database secrets from Parameter Store