- !policy
id: aws
body:
- !variable region
- !variable access_key_id
- !variable secret_key_proxy
- !variable
id: secret_access_key
annotations:
rotation/rotator: aws/secret_key
rotation/ttl: P1D # 1 day
$ conjur variable expire --now prod/aws/secret_access_key