Handling Secrets in SST

Link to chapter — https://serverless-stack.com/chapters/handling-secrets-in-sst.html

How can we add secrets to production environment?

Also, is there an AWS Secrets Manager construct that can be bound (add permissions) to DataSources in AppSyncApi?

Here’s a bit more on this: Environment Variables | Serverless Stack (SST)

Thanks for sharing @jayair

I see it is recommended to use AWS Systems Manager Parameter Store (SSM).

By chance, is there an example of how to integrate this in an SST project? How can I attach required permissions (if any) to Lambda DS to access SSM.

Yeah I don’t think we’ve had a chance to publish an example on this yet. Hop on over to our Slack community and there are folks there that have this working.