Setting up AWS Secrets Manager
This page details how to set up and configure an AWS Secrets Manager for use with Tessera.
The AWS Secrets Manager documentation provides much of the information needed to get started. The information in this section has been taken from the following pages of the AWS documentation:
Creating the AWS Secrets Manager¶
Once you have set up your AWS profile, you will be able to use AWS Secrets Manager.
Enabling Tessera to use the AWS Secrets Manager¶
If using an AWS Secrets Manager, configuration credentials can be provided in many ways as outlined in the AWS docs - Supplying and Retrieving AWS Credentials.
To use environment variables set the following:
AWS_REGION: region_to_connect_to (i.e. us-west-2)
AWS_SECRET_ACCESS_KEY for a particular user can be retrieved from the AWS IAM Management Console.
The AWS Secrets Manager dependencies are included in the
tessera-app-<version>-app.jar. If using the
aws-key-vault-<version>-all.jar must be added to the classpath.