Configure native integrations via API
How to use Infisical API to sync secrets to external secret managers
The Infisical API allows you to create programmatic integrations that connect with third-party secret managers to synchronize secrets from Infisical.
This guide will primarily demonstrate the process using AWS Secret Store Manager (AWS SSM), but the steps are generally applicable to other secret management integrations.
For details on setting up AWS SSM synchronization and understanding its prerequisites, refer to the AWS SSM integration setup documentation.
Authenticate with AWS SSM
Authentication is required for all integrations. Use the Integration Auth API with the following parameters to authenticate.
Set this parameter to aws-secret-manager.
The Infisical project ID for the integration.
The AWS IAM User Access ID.
The AWS IAM User Access Secret Key.
Configure the Synchronization Setup
Once authentication between AWS SSM and Infisical is established, you can configure the synchronization behavior. This involves specifying the source (environment and secret path in Infisical) and the destination in SSM to which the secrets will be synchronized.
Use the integration API with the following parameters to configure the sync source and destination.
The ID of the integration authentication object used with AWS, obtained from the previous API response.
Indicates whether the integration should be active or inactive.
The secret name for saving in AWS SSM, which can be arbitrarily chosen.
The AWS region where the SSM is located, e.g., us-east-1
.
The Infisical environment slug from which secrets will be synchronized, e.g., dev
.
The Infisical folder path from which secrets will be synchronized, e.g., /some/path
. The root path is /
.
Congratulations! You have successfully set up an integration to synchronize secrets from Infisical with AWS SSM. For more information, view the integration API reference.