You're reading from Mastering AWS CloudFormation Build resilient and production-ready infrastructure in Amazon Web Services with CloudFormation

Product type Paperback

Published in Nov 2023

Publisher Packt

ISBN-13 9781805123903

Length 310 pages

Edition 2nd Edition

Languages

Python

Tools

AWS

Concepts

Cloud Computing

Author (1):

Karen Tovmasyan

View More author details

Table of Contents (19) Chapters

Preface

1. Part 1: CloudFormation Internals FREE CHAPTER

2. Chapter 1: Working with CloudFormation

3. Chapter 2: Advanced Template Development

4. Part 2: Provisioning and Deployment at Scale

5. Chapter 3: Validation, Linting, and Deploying the Stack

6. Chapter 4: Continuous Integration and Deployment

7. Chapter 5: Deploying to Multiple Regions and Accounts Using StackSets

8. Chapter 6: Configuration Management of EC2 Instances Using cfn-init

9. Part 3: Extending CloudFormation

10. Chapter 7: Creating Resources Outside AWS Using Custom Resources

11. Chapter 8: Creating Your Own Resource Registry for CloudFormation

12. Chapter 9: Scale Your Templates Using Macros, Nested Stacks, and Modules

13. Chapter 10: Generating CloudFormation Templates Using AWS CDK

14. Chapter 11: Deploying Serverless Applications Using AWS SAM

15. Chapter 12: What’s Next?

16. Assessments

17. Index

Why subscribe?

18. Other Books You May Enjoy

Dynamic references with Parameter Store and Secrets Manager

At the beginning of this chapter, we looked at working with static parameters either in JSON or command-line argument form.

Although it is a known practice in infrastructure-as-code to keep parameters in a Version Control System (VCS), it introduces additional complexity.

If we store parameters in a VCS, we need to take care of encrypting sensitive data, such as passwords or other credentials. If we pass them via command-line arguments, we have to make sure we don’t make a mistake or a typo (which is a common occurrence in the life of IT engineers).

To solve these issues, we can store template parameters in the SSM Parameter Store or Secrets Manager (for passwords).

They both support versioning, so we can always revert the parameters to the previous version if there was a mistake and then redeploy our stack.

Another benefit of using the Parameter Store and Secrets Manager is that we can provide developers...

The rest of the chapter is locked

You're reading from Mastering AWS CloudFormation Build resilient and production-ready infrastructure in Amazon Web Services with CloudFormation

Table of Contents (19) Chapters

Dynamic references with Parameter Store and Secrets Manager

Authors (1)

Personalised recommendations for you

You're reading from Mastering AWS CloudFormation Build resilient and production-ready infrastructure in Amazon Web Services with CloudFormation

Table of Contents (19) Chapters

Dynamic references with Parameter Store and Secrets Manager

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you