Skip to content
This repository has been archived by the owner on Jul 7, 2023. It is now read-only.

Latest commit

 

History

History
42 lines (32 loc) · 1.33 KB

README.md

File metadata and controls

42 lines (32 loc) · 1.33 KB

Build Status

aws-secrets-manager-config

Wraps caarlos0/env to provide a single view of configuration from the environment and secrets from AWS Secrets Manager.

Example

package main

import (
	"fmt"
	"time"
	"github.com/JSainsburyPLC/aws-secrets-manager-conf/conf"
)

type config struct {
	ApiKey       string        `secret:"/app-secrets/plaintext-secret"`
	AppSecrets   appSecrets    `secret:"/my-app-secrets/json-secret"`
	Port         int           `env:"PORT" envDefault:"3000"`
	IsProduction bool          `env:"PRODUCTION"`
	Hosts        []string      `env:"HOSTS" envSeparator:":"`
	Duration     time.Duration `env:"DURATION"`
}

type appSecrets struct {
    SomeKey string `json:"some_key"`
}

func main() {
	cfg := config{}
	awsSession  := ...
	conf.Parse(&cfg, secretsmanager.New(awsSession))
}

Constraints

  • Secrets must be defined as either JSON or plaintext in AWS Secrets Manager.
  • Keys/Value pairs are mapped to the Go struct based on the secret tag.
  • Secrets are required - they must be defined or the code will panic. We prefer to load the secrets on startup and fail fast if the secret value is not set.