Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Chef code to use AWS Secrets Manager in a Chef Recipe
- include_recipe "chef-vault"
- vault = chef_vault_item(:chefsecrets, "awschefsecretsmanager")
- aws_access_key = vault["access_key_id"]
- aws_secret_key = vault["secret_access_key"]
- require 'aws-sdk'
- require 'json'
- client = Aws::SecretsManager::Client.new(region: 'us-west-2', access_key_id: aws_access_key, secret_access_key: aws_secret_key)
- resp = client.get_secret_value({secret_id: 'Mongo/admin'})
- password = JSON.parse(resp.secret_string)
- # DO NOT DO THIS. JUST SHORTCUTTING TO MAKE SURE THINGS WORK
- file '/tmp/output' do
- content "#{password['Password']}"
- mode '0755'
- end
Add Comment
Please, Sign In to add comment
