Passing sensitive data to an Amazon ECS container
You can safely pass sensitive data, such as credentials to a database, into your container.
You can use Amazon Secrets Manager or as a parameter in Amazon Systems Manager Parameter Store to store the secret.
You can retrieve secrets programmatically from the application, or by using environment variables.
To start, first store the sensitive data as a secret in Amazon Secrets Manager or as a parameter in Amazon Systems Manager Parameter Store. Then, use one of the following ways to expose the secret to the container.
Topics
- Retrieve Secrets Manager secrets programatically
- Retrieve Amazon Systems Manager Parameter Store parameters programatically
- Retrieve Secrets Manager secrets through environment variables
- Retrieving Amazon Systems Manager parameters through environment variables
- Retrieve secrets for logging configuration