AWS SSM Parameter Store

Detailed information on the AWS SSM Parameter Store - secret store component

配置

To setup AWS SSM Parameter Store secret store create a component of type secretstores.aws.parameterstore. See this guide on how to create and apply a secretstore configuration. See this guide on referencing secrets to retrieve and use the secret with Dapr components.

See Authenticating to AWS for information about authentication-related attributes.

apiVersion: dapr.io/v1alpha1
kind: Component
metadata:
  name: awsparameterstore
  namespace: default
spec:
  type: secretstores.aws.parameterstore
  version: v1
  metadata:
  - name: region
    value: "[aws_region]"
  - name: accessKey
    value: "[aws_access_key]"
  - name: secretKey
    value: "[aws_secret_key]"
  - name: sessionToken
    value: "[aws_session_token]"

Warning

以上示例将密钥明文存储， It is recommended to use a local secret store such as Kubernetes secret store or a local file to bootstrap secure key storage.

元数据字段规范

字段	必填	详情	Example
region	Y	The specific AWS region the AWS SSM Parameter Store instance is deployed in	`“us-east-1”`
accessKey	Y	要访问此资源的 AWS 访问密钥	`“key”`
secretKey	Y	要访问此资源的 AWS 密钥访问 Key	`“secretAccessKey”`
sessionToken	N	要使用的 AWS 会话令牌	`“sessionToken”`

Create an AWS SSM Parameter Store instance

Setup AWS SSM Parameter Store using the AWS documentation: https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-parameter-store.html.

AWS SSM Parameter Store

AWS SSM Parameter Store

配置

Warning

元数据字段规范

Create an AWS SSM Parameter Store instance

相关链接