在节点中,我通常是这样
const Credstash = require('nodecredstash');
const credstash = new Credstash({
table: <table_name>,
kmsKey: <kms_key>,
});
return credstash.getSecret({
name: <secret_name>,
context: { access: <secret_name> },
})
我按照以下代码使用python软件包credstash进行了尝试
import credstash as cd
secret=cd.getSecret(name=<secret_name>,table=<table_name>,context={ 'access': <secrest_name>},kms={ 'key': <kms_key>})
print('GOT', secret)
但给出错误
AttributeError: 'dict' object has no attribute 'decrypt'
答案 0 :(得分:0)
弄清楚了。
错过了一个kms客户。
import boto3
import credstash as cd
from json import loads
kms = boto3.client('kms')
secret=cd.getSecret(
name=<secret_name>,
table=<table_name>,
context={ 'access': <secret_name>},
kms=kms)
print('GOT', loads(secret))