GitHub Action
aws-secrets-manager-actions
This GitHub Action helps you use your Environment values that stored at AWS Secrets Manager.
steps:
- name: Store ENV from AWS SecretManager
uses: say8425/aws-secrets-manager-actions@v0.10.0
with:
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_DEFAULT_REGION: ${{ secrets.AWS_DEFAULT_REGION }}
SECRET_NAME: ${{ secrets.SECRET_NAME }}
Add your AWS IAM keys. And add you want to use secret name from your AWS Secrets Manager secrets list. Then your secrets will be environment values.
You need AWS IAM user that has proper policy to access AWS Secrets Manager.
If you have it, then add this IAM user keys at AWS_ACCESS_KEY_ID
, AWS_SECRET_ACCESS_KEY
and region AWS_DEFAULT_REGION
.
But we greatly recommend to store these keys at GitHub Secrets.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": "secretsmanager:GetSecretValue",
"Resource": "*"
}
]
}
If you need policy example, then feel free to use this above policy. And you can get more information at AWS User Guide.
Add you want to use secret name from your AWS Secrets Manager secrets list. You can use only one secret name.
Your secrets will be environment values.
And these environment values are masked with ***
. So never be revealed.
Your Contributions are always welcome! Feel free to check issues or Pull Requests
This project is MIT licensed.