Sample code for 30+ languages & platforms
Tcl

AWS Secrets Manager - Get a JSON Secret

See more Secrets Examples

Demonstrates how to fetch the content of a JSON secret from the AWS Secrets Manager.

Note: This example requires Chilkat v10.1.0 or later.

Chilkat Tcl Downloads

Tcl

load ./chilkat.dll

set success 0

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

# The bootstrap secret will contain the following information:

# AWS Region
# AWS Access Key
# AWS Secret Key

# See following examples for setting up a bootstrap secret in memory, 
# or in the local manager (Windows Credentials Manager or Apple Keychain)
# Setup Bootstrap Secret in Local Manager
# Setup Bootstrap Secret in Memory
set bootstrap [new_CkSecrets]

# Set the location of the bootstrap secret.
# Can be "local_manager" or "memory", depending on how you setup the bootstrap secret.
# ---------------------------------------------------------------------------------------------
# If your operating system is NOT Windows or MacOS/iOS, then change "local_manager" to "memory"
# You can also, if desired, use "memory" on Windows and MacOS/iOS if your bootstrap secret was previously setup in memory.
# ---------------------------------------------------------------------------------------------
CkSecrets_put_Location $bootstrap "local_manager"

# Specify the bootstrap secret to be used.
set bsId [new_CkJsonObject]

CkJsonObject_UpdateString $bsId "appName" "AWS"
CkJsonObject_UpdateString $bsId "service" "Example"
CkJsonObject_UpdateString $bsId "username" "Joe"

# ----------------------------------------------------
set secrets [new_CkSecrets]

# Setup for the AWS Secrets Manager
CkSecrets_put_Location $secrets "aws_secrets_manager"
set success [CkSecrets_SetBootstrapSecret $secrets $bsId $bootstrap]
if {$success == 0} then {
    puts [CkSecrets_lastErrorText $secrets]
    delete_CkSecrets $bootstrap
    delete_CkJsonObject $bsId
    delete_CkSecrets $secrets
    exit
}

# Specify the secret to be fetched.
set json [new_CkJsonObject]

CkJsonObject_UpdateString $json "appName" "MyApp"
CkJsonObject_UpdateString $json "service" "OAuth2"
CkJsonObject_UpdateString $json "domain" "onedrive"
CkJsonObject_UpdateString $json "username" "matt"

# Get the secret.
set jsonSecret [new_CkJsonObject]

set success [CkSecrets_GetSecretJson $secrets $json $jsonSecret]
if {$success == 0} then {
    puts [CkSecrets_lastErrorText $secrets]
    delete_CkSecrets $bootstrap
    delete_CkJsonObject $bsId
    delete_CkSecrets $secrets
    delete_CkJsonObject $json
    delete_CkJsonObject $jsonSecret
    exit
}

CkJsonObject_put_EmitCompact $jsonSecret 0
puts [CkJsonObject_emit $jsonSecret]
puts "Success."

delete_CkSecrets $bootstrap
delete_CkJsonObject $bsId
delete_CkSecrets $secrets
delete_CkJsonObject $json
delete_CkJsonObject $jsonSecret