Sample code for 30+ languages & platforms
Delphi DLL

AWS Setup Bootstrap Secret in Local Manager

See more Secrets Examples

Accessing a cloud-based secrets manager requires authentication credentials, which cannot be stored in the manager itself. Instead, they must be securely stored locally.

One solution is to store the authentication credentials as a secret in the Windows Credentials Manager or Apple Keychain. These credentials serve as the "bootstrap secret" for authenticating with the cloud-based secrets manager.

This example demonstrates how to setup a bootstrap secret for the AWS Secrets Manager.

Note: This example requires Chilkat v10.1.0 or later.

Chilkat Delphi DLL Downloads

Delphi DLL
uses
    Winapi.Windows, Winapi.Messages, System.SysUtils, System.Variants, System.Classes, Vcl.Graphics,
    Vcl.Controls, Vcl.Forms, Vcl.Dialogs, Vcl.StdCtrls, Secrets, JsonObject;

...

procedure TForm1.Button1Click(Sender: TObject);
var
success: Boolean;
bootstrap: HCkSecrets;
json: HCkJsonObject;
jsonSecret: HCkJsonObject;

begin
success := False;

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

bootstrap := CkSecrets_Create();

// On Windows, this is the Windows Credentials Manager
// On MacOS/iOS, it is the Apple Keychain
CkSecrets_putLocation(bootstrap,'local_manager');

// Specify the name of the bootstrap secret.
// service and username are required.
// appName and domain are optional.
// Note: The values are arbitrary and can be anything you want.
json := CkJsonObject_Create();
CkJsonObject_UpdateString(json,'appName','AWS');
CkJsonObject_UpdateString(json,'service','Example');
CkJsonObject_UpdateString(json,'username','Joe');

// The bootstrap secret for the AWS Secrets Manager will contain
// the AWS region, access key, and secret key, like this:
jsonSecret := CkJsonObject_Create();
// Modify if necessary to use your region..
CkJsonObject_UpdateString(jsonSecret,'awsRegion','us-east-1');
CkJsonObject_UpdateString(jsonSecret,'awsAccessKey','YOUR_ACCESS_KEY');
CkJsonObject_UpdateString(jsonSecret,'awsSecretKey','YOUR_SECRET_KEY');

// Create or update the bootstrap secret.
success := CkSecrets_UpdateSecretJson(bootstrap,json,jsonSecret);
if (success = False) then
  begin
    Memo1.Lines.Add(CkSecrets__lastErrorText(bootstrap));
    Exit;
  end;

Memo1.Lines.Add('The AWS bootstrap secret has been stored.');

CkSecrets_Dispose(bootstrap);
CkJsonObject_Dispose(json);
CkJsonObject_Dispose(jsonSecret);

end;