AWS Code Sample
Catalog

asm-official-role-policy-for-rotation-function-master-secret.json

This file demonstrates how you could use an IAM identity-based polity to grant access to a secret.

{ "Version": "2012-10-17", "Statement": [ { "Sid": "AllowAccessToSecretsManagerAPIs", "Effect": "Allow", "Action": [ "secretsmanager:DescribeSecret", "secretsmanager:GetRandomPassword", "secretsmanager:GetSecretValue", "secretsmanager:PutSecretValue", "secretsmanager:UpdateSecretVersionStage", ], "Resource": "*" }, { "Sid": "AllowAccessToMasterSecret", "Effect": "Allow", "Action": "secretsmanager:GetSecretValue", "Resource": "<arn_of_master_secret>" } ] }

Sample Details

Service: secretsmanager

Author: AWS

Type: full-example

On this page: