/kms_encrypt_decrypt.sh
Created Mar 9, 2018
kms encrypt decrypt
| #!/usr/bin/env bash | |
| if [ -z ${KMS_KEY_ID} ]; then | |
| echo "KMS_KEY_ID unset! Exiting"; | |
| exit 1 | |
| fi | |
| aws kms encrypt --key-id $KMS_KEY_ID --plaintext "hello" --output text --query CiphertextBlob > output.kms.yml | |
| encrypted=$(<output.kms.yml) | |
| echo "Encrypted: $encrypted" | |
| echo "Decrypted: $(aws kms decrypt --ciphertext-blob fileb://<(echo $encrypted | base64 -D) --query Plaintext --output text | base64 -D)" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment