Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/sceptre/sceptre-ssm-resolver

A Sceptre resolver to retrieve values from the AWS SSM
https://github.com/sceptre/sceptre-ssm-resolver

sceptre sceptre-resolver

Last synced: 22 days ago
JSON representation

A Sceptre resolver to retrieve values from the AWS SSM

Awesome Lists containing this project

README 

        
# Overview



The purpose of this resolver is to retrieve values from the AWS SSM.



## Install



```bash

pip install sceptre-ssm-resolver

```



## Available Resolvers



### ssm



Fetches the value stored in AWS SSM Parameter Store.



__Note:__ Sceptre must be run with a user or role that has access to the parameter store



Syntax:



```yaml

parameter|sceptre_user_data:

  : !ssm /prefix/param

```



```yaml

parameter|sceptre_user_data:

  : !ssm

    name: /prefix/param

    region: us-east-1

    profile: OtherAccount

```



```yaml

parameter|sceptre_user_data:

  : !ssm {"name": "/prefix/param", "region": "us-east-1", "profile": "OtherAccount"}

```



#### Parameters

* name - SSM key name, mandatory

* region - SSM key region, optional, stack region by default

* profile - SSM key's account profile , optional, stack profile by default



#### Example:



Add a secure string to the SSM parameter store

```bash

aws ssm put-parameter --name /dev/DbPassword --value "mysecret" \

--key-id alias/dev/kmskey --type "SecureString"

```



Retrieve and decrypt SSM parameter from the same account that the

stack is being deployed to:

```yaml

parameters:

  database_password: !ssm /dev/DbPassword

```



Retrieve and decrypt SSM parameter from another AWS account:

```yaml

parameters:

  database_password: !ssm

    name: /dev/DbPassword

    profile: OtherAccount

```