crooked-laptop-6756507/08/2022, 7:33 PM
to create k8s secrets from Pulumi's config store, eg for my database password. But Secrets Manager's code samples suggest having apps retrieve secrets directly from Secrets Manager. I'm also thinking that rather than using
my Pulumi code could fetch credentials from Secrets Manager and use those to create the k8s secrets...?
: https://www.pulumi.com/registry/packages/aws/api-docs/secretsmanager/secretversion/ • you can also take the Output from your Pulumi database creation and store it directly, instead of ever storing it in config • you then need to get that secret into you app, which is up to you. Depends on how you're running your application, are you using ECS or something else?
crooked-laptop-6756507/08/2022, 7:39 PM
crooked-laptop-6756507/08/2022, 7:57 PM