PureBasic
PureBasic
AWS Setup Bootstrap Secret in Local Manager
See more Secrets Examples
Accessing a cloud-based secrets manager requires authentication credentials, which cannot be stored in the manager itself. Instead, they must be securely stored locally.One solution is to store the authentication credentials as a secret in the Windows Credentials Manager or Apple Keychain. These credentials serve as the "bootstrap secret" for authenticating with the cloud-based secrets manager.
This example demonstrates how to setup a bootstrap secret for the AWS Secrets Manager.
Note: This example requires Chilkat v10.1.0 or later.
Chilkat PureBasic Downloads
IncludeFile "CkJsonObject.pb"
IncludeFile "CkSecrets.pb"
Procedure ChilkatExample()
success.i = 0
; This example requires the Chilkat API to have been previously unlocked.
; See Global Unlock Sample for sample code.
bootstrap.i = CkSecrets::ckCreate()
If bootstrap.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; On Windows, this is the Windows Credentials Manager
; On MacOS/iOS, it is the Apple Keychain
CkSecrets::setCkLocation(bootstrap, "local_manager")
; Specify the name of the bootstrap secret.
; service and username are required.
; appName and domain are optional.
; Note: The values are arbitrary and can be anything you want.
json.i = CkJsonObject::ckCreate()
If json.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
CkJsonObject::ckUpdateString(json,"appName","AWS")
CkJsonObject::ckUpdateString(json,"service","Example")
CkJsonObject::ckUpdateString(json,"username","Joe")
; The bootstrap secret for the AWS Secrets Manager will contain
; the AWS region, access key, and secret key, like this:
jsonSecret.i = CkJsonObject::ckCreate()
If jsonSecret.i = 0
Debug "Failed to create object."
ProcedureReturn
EndIf
; Modify if necessary to use your region..
CkJsonObject::ckUpdateString(jsonSecret,"awsRegion","us-east-1")
CkJsonObject::ckUpdateString(jsonSecret,"awsAccessKey","YOUR_ACCESS_KEY")
CkJsonObject::ckUpdateString(jsonSecret,"awsSecretKey","YOUR_SECRET_KEY")
; Create or update the bootstrap secret.
success = CkSecrets::ckUpdateSecretJson(bootstrap,json,jsonSecret)
If success = 0
Debug CkSecrets::ckLastErrorText(bootstrap)
CkSecrets::ckDispose(bootstrap)
CkJsonObject::ckDispose(json)
CkJsonObject::ckDispose(jsonSecret)
ProcedureReturn
EndIf
Debug "The AWS bootstrap secret has been stored."
CkSecrets::ckDispose(bootstrap)
CkJsonObject::ckDispose(json)
CkJsonObject::ckDispose(jsonSecret)
ProcedureReturn
EndProcedure