访问 Amazon Secrets Manager
您可以通过以下任何方式使用 Secrets Manager:
Secrets Manager 控制台
您可以使用基于浏览器的 Secrets Manager 控制台
命令行工具
您可以使用 Amazon 命令行工具在系统命令行发出命令,以执行机密管理器和 Amazon 其他任务。与使用控制台相比,此方法更快、更方便。如果要构建执行 Amazon 任务的脚本,命令行工具会十分有用。
当您在命令 shell 中输入命令时,存在访问命令历史记录或实用程序可以访问您命令参数的风险。请参阅降低使用 Amazon CLI 存储 Amazon Secrets Manager 密钥的风险。
Amazon 提供两组命令行工具:
Amazon 软件开发工具包
Amazon 开发工具包包含适用于各种编程语言和平台的库及示例代码,例如,Java、Python、Ruby、.NET 以及其他编程语言和平台。开发工具包包括多个任务,例如以加密方式对请求进行签名、管理错误以及自动重试请求。有关更多信息,请参阅Amazon 软件开发工具包。
要下载并安装任何开发工具包,请参阅适用于 Amazon Web Services 的工具
要获得开发工具包文档,请参阅:
HTTPS 查询 API
HTTPS 查询 API 使您能够以编程方式访问 Secrets Manager 和 Amazon。HTTPS 查询 API 允许您直接向服务发出 HTTPS 请求。
虽然您可以直接调用 Secrets Manager HTTPS 查询 API,但我们建议您使用开发工具包之一作为代替。开发工具包可以执行许多您必须手动执行的有用任务。例如,开发工具包可以自动对请求进行签名,并将响应转换为在语法上适合您的语言的结构。
要对 Secrets Manager 进行 HTTPS 调用,您需要连接到 Secrets Manager 端点。
Secrets Manager 端点
要以编程方式连接到 Secrets Manager,您可以使用端点,即服务入口点的 URL。Amazon SDK 和 Amazon CLI 自动为 Amazon 区域中的服务使用默认端点。但您可以为您的 API 请求指定替代终端节点。
Secrets Manager 在某些区域提供支持美国联邦信息处理标准 (FIPS) 140-2
| 区域名称 | 区域 | 端点 | 协议 |
|---|---|---|---|
| 美国东部(俄亥俄州) | us-east-2 |
secretsmanager.us-east-2.amazonaws.com secretsmanager-fips.us-east-2.amazonaws.com |
HTTPS HTTPS |
| 美国东部(弗吉尼亚州北部) | us-east-1 |
secretsmanager.us-east-1.amazonaws.com secretsmanager-fips.us-east-1.amazonaws.com |
HTTPS HTTPS |
| 美国西部(加利福尼亚北部) | us-west-1 |
secretsmanager.us-west-1.amazonaws.com secretsmanager-fips.us-west-1.amazonaws.com |
HTTPS HTTPS |
| 美国西部(俄勒冈) | us-west-2 |
secretsmanager.us-west-2.amazonaws.com secretsmanager-fips.us-west-2.amazonaws.com |
HTTPS HTTPS |
| 非洲(开普敦) | af-south-1 | secretsmanager.af-south-1.amazonaws.com | HTTPS |
| 亚太地区(香港) | ap-east-1 | secretsmanager.ap-east-1.amazonaws.com | HTTPS |
| 亚太地区(海得拉巴) | ap-south-2 | secretsmanager.ap-south-2.amazonaws.com | HTTPS |
| 亚太地区(雅加达) | ap-southeast-3 | secretsmanager.ap-southeast-3.amazonaws.com | HTTPS |
| 亚太地区(墨尔本) | ap-southeast-4 | secretsmanager.ap-southeast-4.amazonaws.com | HTTPS |
| 亚太地区(孟买) | ap-south-1 | secretsmanager.ap-south-1.amazonaws.com | HTTPS |
| 亚太地区(大阪) | ap-northeast-3 | secretsmanager.ap-northeast-3.amazonaws.com | HTTPS |
| 亚太地区(首尔) | ap-northeast-2 | secretsmanager.ap-northeast-2.amazonaws.com | HTTPS |
| 亚太地区(新加坡) | ap-southeast-1 | secretsmanager.ap-southeast-1.amazonaws.com | HTTPS |
| Asia Pacific (Sydney) | ap-southeast-2 | secretsmanager.ap-southeast-2.amazonaws.com | HTTPS |
| 亚太地区(东京) | ap-northeast-1 | secretsmanager.ap-northeast-1.amazonaws.com | HTTPS |
| Canada (Central) | ca-central-1 |
secretsmanager.ca-central-1.amazonaws.com secretsmanager-fips.ca-central-1.amazonaws.com |
HTTPS HTTPS |
| 中国(北京) | cn-north-1 | secretsmanager.cn-north-1.amazonaws.com.cn | HTTPS |
| 中国(宁夏) | cn-northwest-1 | secretsmanager.cn-northwest-1.amazonaws.com.cn | HTTPS |
| 欧洲(法兰克福) | eu-central-1 | secretsmanager.eu-central-1.amazonaws.com | HTTPS |
| 欧洲(爱尔兰) | eu-west-1 | secretsmanager.eu-west-1.amazonaws.com | HTTPS |
| 欧洲(伦敦) | eu-west-2 | secretsmanager.eu-west-2.amazonaws.com | HTTPS |
| 欧洲(米兰) | eu-south-1 | secretsmanager.eu-south-1.amazonaws.com | HTTPS |
| 欧洲(巴黎) | eu-west-3 | secretsmanager.eu-west-3.amazonaws.com | HTTPS |
| 欧洲(西班牙) | eu-south-2 | secretsmanager.eu-south-2.amazonaws.com | HTTPS |
| 欧洲(斯德哥尔摩) | eu-north-1 | secretsmanager.eu-north-1.amazonaws.com | HTTPS |
| 欧洲(苏黎世) | eu-central-2 | secretsmanager.eu-central-2.amazonaws.com | HTTPS |
| 中东(巴林) | me-south-1 | secretsmanager.me-south-1.amazonaws.com | HTTPS |
| 中东(阿联酋) | me-central-1 | secretsmanager.me-central-1.amazonaws.com | HTTPS |
| 南美洲(圣保罗) | sa-east-1 | secretsmanager.sa-east-1.amazonaws.com | HTTPS |