summon-aws-secrets icon indicating copy to clipboard operation
summon-aws-secrets copied to clipboard

Published 20 hours ago verified publisher icon cyberark

Ability to specify versions of secrets to retrieve

Open tratnayake opened this issue 4 years ago • 1 comments

Is your feature request related to a problem? Please describe.

I would like the ability to specify a specific version of a secret to retrieve from a Summon file. For example, Summon currently allows the ability to retrieve a specific key out of a multi-key value secret through the use of the <secret_path_here>#<key> syntax.

  • This would be useful in the case of doing credential rotations where new secret values added in via the update_secret operation will automatically assign the version AWSCURRENT to the new values, and the version ID AWSPREVIOUS to the old values.

It would be sweet if a user could also specify the version (i.e. !var <path_to_secret>#<key>#<version>)

See: AWS SecretsManager Staging Labels

Describe the solution you would like

A clear and concise description of what the desired end result(s) would be.

  • Specifying a version with ^<version_label> in the path (i.e. <path_to_secret>^<version_id> will retrieve the secret with that specific VersionID.

Describe alternatives you have considered

  • Nil

Additional context

Nil

tratnayake avatar Oct 14 '20 18:10 tratnayake

Published in CyberArk Aha! idea portal

boazmichaely avatar Mar 23 '21 17:03 boazmichaely