/
awssecret.go
47 lines (36 loc) · 915 Bytes
/
awssecret.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
package awssecret
import (
"github.com/aws/aws-sdk-go/aws"
"github.com/aws/aws-sdk-go/aws/session"
"github.com/aws/aws-sdk-go/service/secretsmanager"
"github.com/gosom/secretstash"
)
var _ secretstash.SecretProvider = (*provider)(nil)
type provider struct {
svc *secretsmanager.SecretsManager
}
func New(region string) secretstash.SecretProvider {
sess := session.Must(session.NewSession())
svc := secretsmanager.New(
sess,
aws.NewConfig().WithRegion(region),
)
ans := provider{
svc: svc,
}
return &ans
}
func (p *provider) GetSecret(name string) (string, error) {
input := &secretsmanager.GetSecretValueInput{
SecretId: aws.String(name),
VersionStage: aws.String("AWSCURRENT"),
}
result, err := p.svc.GetSecretValue(input)
if err != nil {
return "", err
}
if result.SecretString == nil {
return "", secretstash.ErrSecretNotFound
}
return *result.SecretString, nil
}