Skip to content

Instantly share code, notes, and snippets.

@beabetterdevv

beabetterdevv/access secretsmanager from lambda

Created October 1, 2022 17:36
Show Gist options
  • Star 3 You must be signed in to star a gist
  • Fork 5 You must be signed in to fork a gist
  • Save beabetterdevv/1bf0a0f0f2b77c24dc37bf292c5df9a1 to your computer and use it in GitHub Desktop.
Save beabetterdevv/1bf0a0f0f2b77c24dc37bf292c5df9a1 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
access secretsmanager from lambda
IAM Policies
---
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": "secretsmanager:GetSecretValue",
"Resource": "*"
}
]
}
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": "kms:Decrypt",
"Resource": "*"
}
]
}
Lambda Code
---
import json
import boto3
import base64
# Your secret's name and region
secret_name = "custom-managed-secret"
region_name = "us-east-1"
#Set up our Session and Client
session = boto3.session.Session()
client = session.client(
service_name='secretsmanager',
region_name=region_name
)
def lambda_handler(event, context):
# Calling SecretsManager
get_secret_value_response = client.get_secret_value(
SecretId=secret_name
)
#Raw Response
print(get_secret_value_response)
#Extracting the key/value from the secret
secret = get_secret_value_response['SecretString']
print(secret)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment