This repository contains the example code for the blog post "Painlessly storing security sensitive data using AWS KMS and OpenSSL"
- Setup your AWS account
- Create an AWS KMS Customer Master Key as described and assign an alias to it as described in step 1 and 2 of the article.
- Place your security sensitive data such as API keys, database credentials etc. in the
.decrypted/folder. - For encryption execute
./bin/encrypt --kms_key_id=alias/your-key. - For decryption execute
./bin/decrypt. - Note: activate the debugging mode by passing
--debug=trueinto the script
This distribution is covered by the GNU GENERAL PUBLIC LICENSE, Version 3, 29 June 2007.
Having trouble with this repository? Check out the documentation at the repository's site or contact [email protected] and we’ll help you sort it out.
Happy Coding
✌️