AWS Secrets Manager is a service that allows you to separate your credentials from your application. You don’t need to hardcode your credentials like database passwords, API keys, or application credentials using this service. Instead, you’ll call the Secrets Manager API on runtime and request the secret’s retrieval. You can also enable rotation on your secret to achieve more security.
In this Cloud Lab, you’ll learn how the Amazon RDS uses the Secrets Manager to manage the secrets of the RDS. You will also learn how to create a secret for storing the API key. Finally, you’ll retrieve the secrets by calling the Secrets Manager API in your application.
After completing this Cloud Lab, you’ll have enough knowledge to secure your database credentials and API keys using the AWS Secrets Manager.
The following is a high-level architecture diagram of the infrastructure that you’ll create in this Cloud Lab: