Pentaho和AWS Secrets经理
我希望将密码保留到AWS Secrets Manager中的数据库中,并能够通过安装在AWS EC2实例上的Pentaho(PDI)的作业来使用它们。
建立此类解决方案的最佳方法是什么?我真的不想将密码保留在EC2实例上。
问候, 拉法尔
Iwould like to keep passwords to databases in AWS Secrets Manager and be able to use them by jobs running from Pentaho (PDI) which is installed on AWS EC2 instance.
What will be the best way to build such solution? I don't really want to keep the passwords on the EC2 instance.
Regards,
Rafal
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
当前,具有AWS Secrets Manager的身份验证需要提交AWS签名版本4,此处对其进行计算的方法:
。或者,您可以使用现成的库,例如Python boto3进行操作。
要连接到AWS Secrets Manager,您可以在Python中使用现成的boto3库,并将其在pdi
Currently, authentication with AWS Secrets Manager requires the submission of AWS Signature Version 4, the method of calculating it is described here: Calculate the signature for AWS Signature Version 4
Unfortunately, the REST Client component does not support AWS authentication and signature calculation, so that separate components would be needed to calculate it or you can do it using ready-made libraries, e.g. Python boto3.
To connect to AWS Secrets Manager, you can use a ready-made Boto3 library in Python and use it in the Python Executor component in PDI
回答自己的问题,可以使用REST API:
•AWS>文档> AWS Secrets Manager> API参考
apireference/api_getSecretValue.html
getEcretValue
并在PDI中使用REST客户端步骤:
https://help.help.hitachivantara.com/docuttarara.com/documentation/documentation/pentocumentation/pentecormentation/ppentaho/9.3/productucts//productucts// REST_CLIENT
Answering own question, it is possible to use REST API:
• AWS > Documentation > AWS Secrets Manager > API Reference
https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_GetSecretValue.html
GetSecretValue
and using REST Client step in PDI:
https://help.hitachivantara.com/Documentation/Pentaho/9.3/Products/REST_Client