Using AWS and segment.io/chamber CLI for managing secrets for your projects

Introduction

Pricing (2019–01–24)

  1. KMS key — $1/month + $0.03 per 10,000 requests
  2. SSM Parameter store — free

Install chamber

# Download chamber and build it locally
> go get github.com/segmentio/chamber
# Put alias to chamber executable into bashrc
> echo "alias chamber=$GOPATH/bin/chamber" | tee -a ~/.bashrc && source ~/.bashrc
> chamber version
chamber dev

KMS key

SSM Parameter store

> chamber exec azure/test1 — sh -c set | grep SQL
SQL_HELLO='....'
SQL_USER='....'
SQL_X='.....'
> chamber write azure/test1 NAME VALUE

Pass chamber when running a command

> chamber exec <service-name> -- my-awesome-build-or-deploy-command
# package.json:
"scripts": {
"deploy": "chamber exec azure/test1 -- npx serverless deploy"
}
> yarn run deploy

Production

Example usage

--

--

Building an awesome new product in PR to help comms & marketing pros and CEOs build their brand awereness and reach more customers and investors.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Ruslan Gainutdinov

Building an awesome new product in PR to help comms & marketing pros and CEOs build their brand awereness and reach more customers and investors.