This GitHub Action helps you use your Environment values from AWS Secrets Manager.
steps:
- name: Store ENV from AWS SecretManager
uses: say8425/[email protected]
with:
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_DEFAULT_REGION: ${{ secrets.AWS_DEFAULT_REGION }}
SECRET_NAME: ${{ secrets.SECRET_NAME }}You need AWS IAM user that has proper policy to access AWS Secrets Manager. And this IAM user keys at AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY and region AWS_DEFAULT_REGION. But we greatly recommend to store the keys at GitHub Secrets and use it.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": "secretsmanager:GetSecretValue",
"Resource": "*"
}
]
}If you need policy example, then feel free to use above policy. And you can get more information at AWS User Guide.
Add you want to get secret name from secrets list.
Then you can use your all secrects from AWS Secrets Manager through Environment values.
AWS Secrets Manager Actions did not have any test yet. And code needs to be refactored. So your Contributions are welcome! Feel free to check issues page.
This project is MIT licensed.