eternaltyro/secrets-manager.js

## secrets-manager.js
// Use this code snippet in your app.
// If you need more information about configurations or implementing the sample code, visit the AWS docs:
// https://aws.amazon.com/developers/getting-started/nodejs/

// Load the AWS SDK
var AWS = require('aws-sdk'),
    region = "us-east-1",
    secretName = "prod_api_keypair",
    secret,
    decodedBinarySecret;

// Create a Secrets Manager client
var client = new AWS.SecretsManager({
    region: region
});

// In this sample we only handle the specific exceptions for the 'GetSecretValue' API.
// See https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_GetSecretValue.html
// We rethrow the exception by default.

client.getSecretValue({SecretId: secretName}, function(err, data) {
    if (err) {
        if (err.code === 'DecryptionFailureException')
            // Secrets Manager can't decrypt the protected secret text using the provided KMS key.
            // Deal with the exception here, and/or rethrow at your discretion.
            throw err;
        else if (err.code === 'InternalServiceErrorException')
            // An error occurred on the server side.
            // Deal with the exception here, and/or rethrow at your discretion.
            throw err;
        else if (err.code === 'InvalidParameterException')
            // You provided an invalid value for a parameter.
            // Deal with the exception here, and/or rethrow at your discretion.
            throw err;
        else if (err.code === 'InvalidRequestException')
            // You provided a parameter value that is not valid for the current state of the resource.
            // Deal with the exception here, and/or rethrow at your discretion.
            throw err;
        else if (err.code === 'ResourceNotFoundException')
            // We can't find the resource that you asked for.
            // Deal with the exception here, and/or rethrow at your discretion.
            throw err;
    }
    else {
        // Decrypts secret using the associated KMS CMK.
        // Depending on whether the secret is a string or binary, one of these fields will be populated.
        if ('SecretString' in data) {
            secret = data.SecretString;
        } else {
            let buff = new Buffer(data.SecretBinary, 'base64');
            decodedBinarySecret = buff.toString('ascii');
        }
    }

    // Your code goes here.
});

## secrets-manager.py
# Use this code snippet in your app.
# If you need more information about configurations or implementing the sample code, visit the AWS docs:
# https://aws.amazon.com/developers/getting-started/python/

import boto3
import base64
from botocore.exceptions import ClientError


def get_secret():

    secret_name = "prod_api_keypair"
    region_name = "us-east-1"

    # Create a Secrets Manager client
    session = boto3.session.Session()
    client = session.client(
        service_name='secretsmanager',
        region_name=region_name
    )

    # In this sample we only handle the specific exceptions for the 'GetSecretValue' API.
    # See https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_GetSecretValue.html
    # We rethrow the exception by default.

    try:
        get_secret_value_response = client.get_secret_value(
            SecretId=secret_name
        )
    except ClientError as e:
        if e.response['Error']['Code'] == 'DecryptionFailureException':
            # Secrets Manager can't decrypt the protected secret text using the provided KMS key.
            # Deal with the exception here, and/or rethrow at your discretion.
            raise e
        elif e.response['Error']['Code'] == 'InternalServiceErrorException':
            # An error occurred on the server side.
            # Deal with the exception here, and/or rethrow at your discretion.
            raise e
        elif e.response['Error']['Code'] == 'InvalidParameterException':
            # You provided an invalid value for a parameter.
            # Deal with the exception here, and/or rethrow at your discretion.
            raise e
        elif e.response['Error']['Code'] == 'InvalidRequestException':
            # You provided a parameter value that is not valid for the current state of the resource.
            # Deal with the exception here, and/or rethrow at your discretion.
            raise e
        elif e.response['Error']['Code'] == 'ResourceNotFoundException':
            # We can't find the resource that you asked for.
            # Deal with the exception here, and/or rethrow at your discretion.
            raise e
    else:
        # Decrypts secret using the associated KMS CMK.
        # Depending on whether the secret is a string or binary, one of these fields will be populated.
        if 'SecretString' in get_secret_value_response:
            secret = get_secret_value_response['SecretString']
        else:
            decoded_binary_secret = base64.b64decode(get_secret_value_response['SecretBinary'])

    # Your code goes here.
	// Use this code snippet in your app.
	// If you need more information about configurations or implementing the sample code, visit the AWS docs:
	// https://aws.amazon.com/developers/getting-started/nodejs/

	// Load the AWS SDK
	var AWS = require('aws-sdk'),
	region = "us-east-1",
	secretName = "prod_api_keypair",
	secret,
	decodedBinarySecret;

	// Create a Secrets Manager client
	var client = new AWS.SecretsManager({
	region: region
	});

	// In this sample we only handle the specific exceptions for the 'GetSecretValue' API.
	// See https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_GetSecretValue.html
	// We rethrow the exception by default.

	client.getSecretValue({SecretId: secretName}, function(err, data) {
	if (err) {
	if (err.code === 'DecryptionFailureException')
	// Secrets Manager can't decrypt the protected secret text using the provided KMS key.
	// Deal with the exception here, and/or rethrow at your discretion.
	throw err;
	else if (err.code === 'InternalServiceErrorException')
	// An error occurred on the server side.
	// Deal with the exception here, and/or rethrow at your discretion.
	throw err;
	else if (err.code === 'InvalidParameterException')
	// You provided an invalid value for a parameter.
	// Deal with the exception here, and/or rethrow at your discretion.
	throw err;
	else if (err.code === 'InvalidRequestException')
	// You provided a parameter value that is not valid for the current state of the resource.
	// Deal with the exception here, and/or rethrow at your discretion.
	throw err;
	else if (err.code === 'ResourceNotFoundException')
	// We can't find the resource that you asked for.
	// Deal with the exception here, and/or rethrow at your discretion.
	throw err;
	}
	else {
	// Decrypts secret using the associated KMS CMK.
	// Depending on whether the secret is a string or binary, one of these fields will be populated.
	if ('SecretString' in data) {
	secret = data.SecretString;
	} else {
	let buff = new Buffer(data.SecretBinary, 'base64');
	decodedBinarySecret = buff.toString('ascii');
	}
	}

	// Your code goes here.
	});
	# Use this code snippet in your app.
	# If you need more information about configurations or implementing the sample code, visit the AWS docs:
	# https://aws.amazon.com/developers/getting-started/python/

	import boto3
	import base64
	from botocore.exceptions import ClientError


	def get_secret():

	secret_name = "prod_api_keypair"
	region_name = "us-east-1"

	# Create a Secrets Manager client
	session = boto3.session.Session()
	client = session.client(
	service_name='secretsmanager',
	region_name=region_name
	)

	# In this sample we only handle the specific exceptions for the 'GetSecretValue' API.
	# See https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_GetSecretValue.html
	# We rethrow the exception by default.

	try:
	get_secret_value_response = client.get_secret_value(
	SecretId=secret_name
	)
	except ClientError as e:
	if e.response['Error']['Code'] == 'DecryptionFailureException':
	# Secrets Manager can't decrypt the protected secret text using the provided KMS key.
	# Deal with the exception here, and/or rethrow at your discretion.
	raise e
	elif e.response['Error']['Code'] == 'InternalServiceErrorException':
	# An error occurred on the server side.
	# Deal with the exception here, and/or rethrow at your discretion.
	raise e
	elif e.response['Error']['Code'] == 'InvalidParameterException':
	# You provided an invalid value for a parameter.
	# Deal with the exception here, and/or rethrow at your discretion.
	raise e
	elif e.response['Error']['Code'] == 'InvalidRequestException':
	# You provided a parameter value that is not valid for the current state of the resource.
	# Deal with the exception here, and/or rethrow at your discretion.
	raise e
	elif e.response['Error']['Code'] == 'ResourceNotFoundException':
	# We can't find the resource that you asked for.
	# Deal with the exception here, and/or rethrow at your discretion.
	raise e
	else:
	# Decrypts secret using the associated KMS CMK.
	# Depending on whether the secret is a string or binary, one of these fields will be populated.
	if 'SecretString' in get_secret_value_response:
	secret = get_secret_value_response['SecretString']
	else:
	decoded_binary_secret = base64.b64decode(get_secret_value_response['SecretBinary'])

	# Your code goes here.