Last active
August 8, 2023 13:55
-
-
Save nmarley/99cec84a0b1b9fd87d3ae51c88d68fbb to your computer and use it in GitHub Desktop.
AWS KMS encryption/decryption using Python/Boto3
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| import base64 | |
| if __name__ == '__main__': | |
| session = boto3.session.Session() | |
| kms = session.client('kms') | |
| encrypted_password = 'AQECAHjgTiiE7TYRGp5Irf8jQ3HzlaQaHGYgsUJDaavnHcFm0gAAAGswaQYJKoZIhvcNAQcGoFwwWgIBADBVBgkqhkiG9w0BBwEwHgYJYIZIAWUDBAEuMBEEDDwxVQuG0oVwpkU7nQIBEIAoVGk1/wpserb+GVUOzE7PiL/Nr9fTDFKZfpKpF0ip2ct4B2q0Wn6ZZw==' | |
| binary_data = base64.b64decode(encrypted_password) | |
| meta = kms.decrypt(CiphertextBlob=binary_data) | |
| plaintext = meta[u'Plaintext'] | |
| print(plaintext.decode()) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| import base64 | |
| if __name__ == '__main__': | |
| session = boto3.session.Session() | |
| kms = session.client('kms') | |
| key_id = 'alias/timesheets' | |
| stuff = kms.encrypt(KeyId=key_id, Plaintext='S00pers33kr1t') | |
| binary_encrypted = stuff[u'CiphertextBlob'] | |
| encrypted_password = base64.b64encode(binary_encrypted) | |
| print(encrypted_password.decode()) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| boto3==1.4.8 | |
| botocore==1.8.1 | |
| docutils==0.14 | |
| futures==3.1.1 | |
| jmespath==0.9.3 | |
| python-dateutil==2.6.1 | |
| s3transfer==0.1.11 | |
| six==1.11.0 |
Great gist!
Thanks 🔥
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I have table in one database which has column level security applied to it, now I am performing some ETL operation on this table using glue job and writing this new table into another database after running glue job I am getting below error Py4JjavaError:An error occurred while calling 065.getDynamicFrame.java.lang.reflect.Invocation Target Exception
so my question is it is possible to perform ETL operation on column level security if yes than how can I do that plz inform me and give some reference.
Advance Thanks & regards