Kms Encryption for secret password

Question

I try to encode and decode plaintext using aws kms encrypt and decrypt.But it showing a following error:

aws [options] <command> <subcommand> [<subcommand> ...] [parameters]
To see help text, you can run:

aws help
aws <command> help
aws <command> \<subcommand> help

**Unknown options: --decode, >, ExampleEncryptedFile.txt, base64"**

Commands which i used:

    **aws kms encrypt --key-id 1234abcd-12ab-34cd-56ef-1234567890ab --
    plaintext mysecretpassword --output text --query 
       CiphertextBlob | base64 --decode > ExampleEncryptedFile**

If i use like the below it works:

        **aws kms encrypt --key-id 1234abcd-12ab-34cd-56ef-1234567890ab --
       plaintext fileb://ExamplePlaintextFile --output text --query 
        CiphertextBlob** 

       Decode also facing  issue like: **InvalidCiphertextException error**

Thanks in advance!

Are you running this command directly from the shell or invoking from perl/python etc? Also which shell are you using? — sukrit007, Oct 28 '17 at 06:52

score 0 · Answer 1 · answered Apr 17 '18 at 13:14

Try these:

#Encrypt
#!/bin/bash
if [ -z $3 ]
 then
 echo 'Encrypt a file with AWS KMS'
 echo 'Usage: ./encrypt.sh <inputfile> <outputfile>'
 echo 'Example: ./encrypt.sh input.txt output.txt'
 exit 1
fi


aws kms encrypt --key-id alias/**SOME_KEY_ALIAS** --plaintext fileb://$1 --output text --query CiphertextBlob | base64 --decode > $2

#####

# Decrypt
#!/bin/bash
if [ -z $2 ]
 then
 echo 'Decrypt a file with AWS KMS'
 echo 'Usage: ./decrypt.sh <inputfile> <outputfile>'
 echo 'Example: ./decrypt.sh input.txt output.txt'
 exit 1
fi
aws kms decrypt --ciphertext-blob fileb://$1 --output text --query Plaintext | base64 --decode > $2

Kms Encryption for secret password

1 Answers1