Can I store a multi-level secrets JSON in AWS Secrets Manager?

228 Views Asked by yuvalm2 At 04 April 2025 at 01:42

Suppose I wanted to store something like:

{
    "service_name": {
        "prod": "SECRET1",
        "dev": "SECRET2"
    }
}

Can I store such JSON in AWS Secrets Manager?

Original Q&A

There are 2 best solutions below

Ermiya Eskandary On 05 November 2023 at 15:49 BEST ANSWER

Yes - regardless of the JSON structure, to AWS, you will be storing a string (SecretString), or binary.

Creating the secret:

aws secretsmanager create-secret \
    --name TestSecret \
    --description "Test secret" \
    --secret-string "{\"service_name\":{\"prod\":\"SECRET1\",\"dev\":\"SECRET2\"}}"

Retrieving the secret:

aws secretsmanager get-secret-value \
    --secret-id TestSecret \
    --query SecretString \
    --output text

Output:

{"service_name":{"prod":"SECRET1","dev":"SECRET2"}}

Paolo On 05 November 2023 at 18:31

Just to add on to Ermiya's answer, if you have that json in a file (or variable) you can easily serialize/deserialize it using jq. Given:

$ cat file
{
    "service_name": {
        "prod": "SECRET1",
        "dev": "SECRET2"
    }
}

then creating the secret:

$ aws secretsmanager create-secret \
    --name TestSecret \
    --description "Test secret" \
    --secret-string "$(jq '. | @json' file)"

retrieving the secret:

$ aws secretsmanager get-secret-value \
    --secret-id TestSecret \
    --query SecretString \
    --output text | jq -r '.'
{"service_name":{"prod":"SECRET1","dev":"SECRET2"}}

Can I store a multi-level secrets JSON in AWS Secrets Manager?

There are 2 best solutions below

Related Questions in AMAZON-WEB-SERVICES

Related Questions in AWS-SECRETS-MANAGER

Trending Questions

Popular # Hahtags

Popular Questions