Currently, when creating / lookup with x-rds/x-docdb, the secret is exposed to the destination containers via Secrets.ValueFrom, and permissions granted to the Execution role.
One would want an option to also expose the secret ARN to the containers and grant the task role access, so that the dev team can choose which ever they want to get access to.
Currently, when creating / lookup with x-rds/x-docdb, the secret is exposed to the destination containers via
Secrets
.ValueFrom
, and permissions granted to the Execution role. One would want an option to also expose the secret ARN to the containers and grant the task role access, so that the dev team can choose which ever they want to get access to.