Add support for AWS Secrets Manager as an external key value store

[jonathanfoster]

Is your feature request related to a problem? Please describe.

I'm an enterprise Tyk Cloud customer and I have a ton of APIs that require auth tokens for upstream API authorization. I use AWS Secrets Manager for external secrets, but this isn't natively supported by Tyk. Instead I have to run External Secrets Operator to inject secrets as environment variables, which requires me to store all secret key-value pairs in one external secret (e.g., TYK_GW_SECRETS=key:value,key2:value2). There's no way for me to allow individual API owners to manage their own secrets.

Describe the solution you'd like

A solution would be to natively support AWS Secrets Manager as an external key-value store.

Describe alternatives you've considered

The current workaround is to use External Secrets Operator to map secrets from AWS to environment variables in Tyk. This has the limitation of only supporting one secret with all key-value pairs.

Another option I've consider is installing Vault and have it integrate with AWS. This would require an enterprise license for Vault though.