Passing sensitive data to an Amazon ECS container
You can safely pass sensitive data, such as credentials to a database, into your container.
You can use Amazon Secrets Manager or as a parameter in Amazon Systems Manager Parameter Store to store the secret.
You can retrieve secrets programmatically from the application, or by using environment variables.
To start, first store the sensitive data as a secret in Amazon Secrets Manager or as a parameter in Amazon Systems Manager Parameter Store. Then, use one of the following ways to expose the secret to the container.
Topics
- Retrieve Secrets Manager secrets programmatically
- Retrieve Amazon Systems Manager Parameter Store parameters programmatically
- Retrieve Secrets Manager secrets through environment variables
- Retrieving Amazon Systems Manager parameters through environment variables
- Retrieve secrets for logging configuration