Reference Secrets Manager Parameters to Secret String

Question

Is there any way to reference parameters in SecretString field in Secrets Manager via CloudFormation?

The way I made the script, the !Ref parameter is a text and not a reference to the parameter.

AWSTemplateFormatVersion: 2010-09-09

Parameters:

  Name:
    Type: String
  myuserparameter:
    Type: String
  mypasswordparameter:
    Type: String

Resources:  
  
  SecretsManager:
    Type: AWS::SecretsManager::Secret
    Properties:
      Name: !Ref Name
      SecretString: '{"username":"!Ref myuserparameter,"password":"Ref mypasswordparameter"}'

Derek Menénedez · Accepted Answer · 2021-10-09T18:18:16.283

3

this will work:

AWSTemplateFormatVersion: 2010-09-09

Parameters:

  Name:
    Type: String
  myuserparameter:
    Type: String
  mypasswordparameter:
    Type: String

Resources:  
  
  SecretsManager:
    Type: AWS::SecretsManager::Secret
    Properties:
      Name: !Ref Name
      SecretString: !Sub '{"username": "${myuserparameter}","password": "${mypasswordparameter}"}'

edited Oct 09 '21 at 18:18

answered Oct 09 '21 at 17:58

Derek Menénedez

2,003
11
20

I missed one thing, I updated my answer – Derek Menénedez Oct 09 '21 at 18:03
I ran your script in CloudFormation and it returns this error: Invalid name. Must be a valid name containing alphanumeric characters, or any of the following: -/_+=.@! The name I put was: teste-ssm I'm researching what it might be. – Daniel Fulgido Oct 09 '21 at 18:12
fixed... try again! – Derek Menénedez Oct 09 '21 at 18:18

Reference Secrets Manager Parameters to Secret String

1 Answers1