@dawaltconley/kms-decrypt
v0.2.1
Published
A simple lambda function for decrypting KMS-encrypted environment variables.
Downloads
7
Readme
KMS Decrypt
A simple function for decrypting information using the AWS Key Management Service. Returns a promise which resolves to the decrypted secret.
Examples
Decrypting an environment variable.
const { decrypt } = require('@dawaltconley/kms-decrypt')
const eAuth = process.env['SECRET']
let dAuth
exports.handler = async (event, context) => {
if (!dAuth)
dAuth = await decrypt(eAuth)
// do something with decrypted secret
}
Decrypting multiple environment variables.
const { decrypt } = require('@dawaltconley/kms-decrypt')
const eAuth = [
process.env['USERNAME'],
process.env['PASSWORD']
]
let dAuth
exports.handler = async (event, context) => {
if (!dAuth)
dAuth = eAuth.map(decrypt)
const [ user, pass ] = await Promise.all(dAuth)
// do something with decrypted login
}
You can also encrypt data using the encrypt method. This is a simple Promise wrapper on the AWS SDK KMS encrypt method, which takes a params
object as its argument.