cremich/rotate-access-key.ts

## rotate-access-key.ts
import { captureAWSv3Client } from "aws-xray-sdk";
import { IAM } from "@aws-sdk/client-iam";
import { SecretsManager } from "@aws-sdk/client-secrets-manager";

export interface RotateAccessKeyEvent {
  iamUserName: string;
  secretId: string;
}

const iamClient = captureAWSv3Client(new IAM({}));
const secretsManagerClient = captureAWSv3Client(new SecretsManager({}));

export const handler = async (event: RotateAccessKeyEvent) => {
  console.log(`rotate access key for user ${event.iamUserName}`);
  const accessKey = await iamClient.createAccessKey({
    UserName: event.iamUserName,
  });

  await secretsManagerClient.putSecretValue({
    SecretId: event.secretId,
    SecretString: JSON.stringify({
      accessKeyId: accessKey.AccessKey?.AccessKeyId || "",
      secretAccessKey: accessKey.AccessKey?.SecretAccessKey || "",
    }),
  });
};
	import { captureAWSv3Client } from "aws-xray-sdk";
	import { IAM } from "@aws-sdk/client-iam";
	import { SecretsManager } from "@aws-sdk/client-secrets-manager";

	export interface RotateAccessKeyEvent {
	iamUserName: string;
	secretId: string;
	}

	const iamClient = captureAWSv3Client(new IAM({}));
	const secretsManagerClient = captureAWSv3Client(new SecretsManager({}));

	export const handler = async (event: RotateAccessKeyEvent) => {
	console.log(`rotate access key for user ${event.iamUserName}`);
	const accessKey = await iamClient.createAccessKey({
	UserName: event.iamUserName,
	});

	await secretsManagerClient.putSecretValue({
	SecretId: event.secretId,
	SecretString: JSON.stringify({
	accessKeyId: accessKey.AccessKey?.AccessKeyId \|\| "",
	secretAccessKey: accessKey.AccessKey?.SecretAccessKey \|\| "",
	}),
	});
	};