1. Docs
  2. Reference
  3. API
  4. AWS
  5. secretsmanager
  6. GetSecret

GetSecret

Retrieve metadata information about a Secrets Manager secret. To retrieve a secret value, see the aws.secretsmanager.SecretVersion.

Example Usage

ARN

using Pulumi;
using Aws = Pulumi.Aws;

class MyStack : Stack
{
    public MyStack()
    {
        var by_arn = Output.Create(Aws.SecretsManager.GetSecret.InvokeAsync(new Aws.SecretsManager.GetSecretArgs
        {
            Arn = "arn:aws:secretsmanager:us-east-1:123456789012:secret:example-123456",
        }));
    }

}

package main

import (
    "github.com/pulumi/pulumi-aws/sdk/v2/go/aws/secretsmanager"
    "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)

func main() {
    pulumi.Run(func(ctx *pulumi.Context) error {
        opt0 := "arn:aws:secretsmanager:us-east-1:123456789012:secret:example-123456"
        _, err := secretsmanager.LookupSecret(ctx, &secretsmanager.LookupSecretArgs{
            Arn: &opt0,
        }, nil)
        if err != nil {
            return err
        }
        return nil
    })
}
import pulumi
import pulumi_aws as aws

by_arn = aws.secretsmanager.get_secret(arn="arn:aws:secretsmanager:us-east-1:123456789012:secret:example-123456")
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

const by_arn = pulumi.output(aws.secretsmanager.getSecret({
    arn: "arn:aws:secretsmanager:us-east-1:123456789012:secret:example-123456",
}, { async: true }));

Name

using Pulumi;
using Aws = Pulumi.Aws;

class MyStack : Stack
{
    public MyStack()
    {
        var by_name = Output.Create(Aws.SecretsManager.GetSecret.InvokeAsync(new Aws.SecretsManager.GetSecretArgs
        {
            Name = "example",
        }));
    }

}

package main

import (
    "github.com/pulumi/pulumi-aws/sdk/v2/go/aws/secretsmanager"
    "github.com/pulumi/pulumi/sdk/v2/go/pulumi"
)

func main() {
    pulumi.Run(func(ctx *pulumi.Context) error {
        opt0 := "example"
        _, err := secretsmanager.LookupSecret(ctx, &secretsmanager.LookupSecretArgs{
            Name: &opt0,
        }, nil)
        if err != nil {
            return err
        }
        return nil
    })
}
import pulumi
import pulumi_aws as aws

by_name = aws.secretsmanager.get_secret(name="example")
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

const by_name = pulumi.output(aws.secretsmanager.getSecret({
    name: "example",
}, { async: true }));

Using GetSecret

function getSecret(args: GetSecretArgs, opts?: InvokeOptions): Promise<GetSecretResult>
function  get_secret(arn=None, name=None, opts=None)
func LookupSecret(ctx *Context, args *LookupSecretArgs, opts ...InvokeOption) (*LookupSecretResult, error)

Note: This function is named LookupSecret in the Go SDK.

public static class GetSecret {
    public static Task<GetSecretResult> InvokeAsync(GetSecretArgs args, InvokeOptions? opts = null)
}

The following arguments are supported:

Arn string

The Amazon Resource Name (ARN) of the secret to retrieve.

Name string

The name of the secret to retrieve.

Arn string

The Amazon Resource Name (ARN) of the secret to retrieve.

Name string

The name of the secret to retrieve.

arn string

The Amazon Resource Name (ARN) of the secret to retrieve.

name string

The name of the secret to retrieve.

arn str

The Amazon Resource Name (ARN) of the secret to retrieve.

name str

The name of the secret to retrieve.

GetSecret Result

The following output properties are available:

Arn string

The Amazon Resource Name (ARN) of the secret.

Description string

A description of the secret.

Id string

The provider-assigned unique ID for this managed resource.

KmsKeyId string

The Key Management Service (KMS) Customer Master Key (CMK) associated with the secret.

Name string
Policy string

The resource-based policy document that’s attached to the secret.

RotationEnabled bool

Whether rotation is enabled or not.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

RotationLambdaArn string

Rotation Lambda function Amazon Resource Name (ARN) if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

RotationRules List<GetSecretRotationRule>

Rotation rules if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

Tags Dictionary<string, string>

Tags of the secret.

Arn string

The Amazon Resource Name (ARN) of the secret.

Description string

A description of the secret.

Id string

The provider-assigned unique ID for this managed resource.

KmsKeyId string

The Key Management Service (KMS) Customer Master Key (CMK) associated with the secret.

Name string
Policy string

The resource-based policy document that’s attached to the secret.

RotationEnabled bool

Whether rotation is enabled or not.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

RotationLambdaArn string

Rotation Lambda function Amazon Resource Name (ARN) if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

RotationRules []GetSecretRotationRule

Rotation rules if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

Tags map[string]string

Tags of the secret.

arn string

The Amazon Resource Name (ARN) of the secret.

description string

A description of the secret.

id string

The provider-assigned unique ID for this managed resource.

kmsKeyId string

The Key Management Service (KMS) Customer Master Key (CMK) associated with the secret.

name string
policy string

The resource-based policy document that’s attached to the secret.

rotationEnabled boolean

Whether rotation is enabled or not.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

rotationLambdaArn string

Rotation Lambda function Amazon Resource Name (ARN) if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

rotationRules GetSecretRotationRule[]

Rotation rules if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

tags {[key: string]: string}

Tags of the secret.

arn str

The Amazon Resource Name (ARN) of the secret.

description str

A description of the secret.

id str

The provider-assigned unique ID for this managed resource.

kms_key_id str

The Key Management Service (KMS) Customer Master Key (CMK) associated with the secret.

name str
policy str

The resource-based policy document that’s attached to the secret.

rotation_enabled bool

Whether rotation is enabled or not.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

rotation_lambda_arn str

Rotation Lambda function Amazon Resource Name (ARN) if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

rotation_rules List[GetSecretRotationRule]

Rotation rules if rotation is enabled.

Deprecated: Use the aws_secretsmanager_secret_rotation data source instead

tags Dict[str, str]

Tags of the secret.

Supporting Types

GetSecretRotationRule

See the output API doc for this type.

See the output API doc for this type.

See the output API doc for this type.

AutomaticallyAfterDays int
AutomaticallyAfterDays int
automaticallyAfterDays number
automaticallyAfterDays float

Package Details

Repository
https://github.com/pulumi/pulumi-aws
License
Apache-2.0
Notes
This Pulumi package is based on the aws Terraform Provider.