AWS AmazonECS documentation change
Summary
Added example task definition snippet for referencing multiple Secrets Manager secrets
Security assessment
Demonstrates proper secret management patterns but does not address any specific security vulnerability. Enhances documentation about secure secret handling without indicating a prior security issue.
Diff
diff --git a/AmazonECS/latest/developerguide/secrets-envvar-secrets-manager.md b/AmazonECS/latest/developerguide/secrets-envvar-secrets-manager.md index b14fcfb10..a1f9c3621 100644 --- a//AmazonECS/latest/developerguide/secrets-envvar-secrets-manager.md +++ b//AmazonECS/latest/developerguide/secrets-envvar-secrets-manager.md @@ -105,0 +106,26 @@ To access the value of this secret from within the container you would need to c +###### Example referencing full secrets + +The following is a snippet of a task definition showing the format when referencing the full text of multiple Secrets Manager secrets. + + + { + "containerDefinitions": [{ + "secrets": [ + { + "name": "environment_variable_name1", + "valueFrom": "arn:aws:secretsmanager:region:aws_account_id:secret:secret_name-AbCdEf" + }, + { + "name": "environment_variable_name2", + "valueFrom": "arn:aws:secretsmanager:region:aws_account_id:secret:secret_name-abcdef" + }, + { + "name": "environment_variable_name3", + "valueFrom": "arn:aws:secretsmanager:region:aws_account_id:secret:secret_name-ABCDEF" + } + ] + }] + } + +To access the value of this secret from within the container you would need to call the `$environment_variable_name1`, `$environment_variable_name2`, and `$environment_variable_name13`. +