2 Answers
- Newest
- Most votes
- Most comments
1
No. Environment variables are not encrypted when viewed through the ECS API, ECS Console, and are also visible on the host itself through docker inspect
.
answered 8 years ago
-1
By default, ENV variables in your TaskDefinition are NOT encrypted. However, You could use AWS Parameter Store or AWS Secrets manager to encrypt your ENV vars.
answered 2 years ago
Relevant content
- Accepted Answerasked a year ago
- Accepted Answerasked 10 months ago
- Accepted Answerasked 2 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
The environment variables exposed to the containers are not encrypted. You might have the source of the value (SSM/SecretsManager) encrypted but not the value of the env var itself to the containers. That defies the purpose. Just clarifying as this is confusing.