Storing parameters securely accross multiple environments with employees having different level of access in each of those can be challenging. AWS Systems Manager Parameter Store offers a nice solution to that problem with lots of advantages such as:
- being hosted, highly available, and scalable
- history tracking
- encryption with KMS
- audits in CloudTrail
- notifications with CloudWatch or SNS
- granular security using IAM policies
Every security team’s dream.
When we decided to store our deepest secrets in the Parameter Store, I searched right away for an integration with Spring Boot/Cloud for our Java microservices. I was left empty-handed.