billowy-spoon-90104
02/08/2023, 4:24 PMbillowy-army-68599
02/08/2023, 4:26 PMbillowy-spoon-90104
02/08/2023, 4:32 PMbillowy-army-68599
02/08/2023, 4:35 PMgetSecret
if you wishbillowy-spoon-90104
02/08/2023, 4:38 PMgetSecret
? I thought I could only pass the ARN to a resource that takes an AWS Secret but not use them in place of a Pulumi Secret. Is it possible to pass one to something that say, takes an actual value like a field such as Password:
?billowy-army-68599
02/08/2023, 4:41 PMbillowy-spoon-90104
02/08/2023, 4:45 PMPassword
field and wants a real value as a password (not a reference to an AWS Secret Manager ARN or anything like that)
Right now I can pass it a Pulumi secret and it works just fine because Pulumi inserts the unencrypted value of the secret in that field.
I'm trying to figure out if there's a way I can use an AWS Secrets Manager secret in the same way. Basically I'd store the secret in AWS Secrets Manager and then use Password: someAWSSecret
and then Pulumi would insert the real unencrypted value of that secret in the Password
field the same way it does with a native Pulumi secret.billowy-army-68599
02/08/2023, 4:46 PM<https://www.pulumi.com/registry/packages/aws/api-docs/secretsmanager/getsecretversion/>
and then use this output: https://www.pulumi.com/registry/packages/aws/api-docs/secretsmanager/getsecretversion/#secretstring_nodejsbillowy-spoon-90104
02/08/2023, 4:49 PMgetSecret
and not getSecretVersion
thank you, I'll give that a shot.
Thank you very much 🙏