Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AWSSecretsManager wrapper #1081

Merged
merged 2 commits into from
Aug 21, 2024
Merged

AWSSecretsManager wrapper #1081

merged 2 commits into from
Aug 21, 2024

Conversation

skudasov
Copy link
Collaborator

@skudasov skudasov commented Aug 21, 2024
edited
Loading

This PR introduces a simple wrapper on top of AWS Secrets Manager, allowing us to create/read/delete secrets and protecting them from accidental printing.
E2E tests will be enabled in next PRs when we issue proper creds for that.

Below is a summarization created by an LLM (gpt-4-0125-preview). Be mindful of hallucinations and verify accuracy.

Why

The changes introduce AWS Secrets Manager integration for handling secrets within the application securely. This includes adding functionality to create, retrieve, and delete secrets programmatically via a new client/secretsmanager.go file and documentation on how to use these features and interact with AWS Secrets Manager via CLI. The updates in go.mod and go.sum reflect new dependencies required for AWS SDK to support these operations.

What

  • README.md
    • Added a section about using AWS Secrets Manager with a link to the new SECRETS.md documentation.
  • SECRETS.md
    • New documentation file explaining how to interact with AWS Secrets Manager from the code and CLI, including creating and reading secrets.
  • client/secretsmanager.go
    • New Go file implementing the functionality to interact with AWS Secrets Manager, including creating, retrieving, and deleting secrets. It includes the definition of AWSSecretsManager struct and AWSSecret type to handle secrets securely.
  • client/secretsmanager_test.go
    • New Go test file for the secretsmanager.go functionality, ensuring secrets are managed correctly through unit tests.
  • go.mod & go.sum
    • Added new dependencies for AWS SDK (aws-sdk-go-v2/config, aws-sdk-go-v2/service/secretsmanager) necessary for interacting with AWS Secrets Manager. The updates include direct and indirect dependencies to support these additions.

@skudasov skudasov marked this pull request as ready for review August 21, 2024 13:00
@skudasov skudasov requested review from sebawo and a team as code owners August 21, 2024 13:00
@skudasov skudasov requested a review from Tofel August 21, 2024 13:55
@cl-sonarqube-production
Copy link

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarQube

@skudasov skudasov merged commit 2738403 into main Aug 21, 2024
25 of 28 checks passed
@skudasov skudasov deleted the try-aws-secrets branch August 21, 2024 14:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gheorghestrimtu gheorghestrimtu gheorghestrimtu approved these changes

@lukaszcl lukaszcl lukaszcl approved these changes

@sebawo sebawo Awaiting requested review from sebawo sebawo is a code owner

@Tofel Tofel Awaiting requested review from Tofel

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@skudasov @gheorghestrimtu @lukaszcl