stackoom
  简体   繁体   中英

Access SSM Parameter store value in an aws amplify react js application

 原文  2021-06-16 09:35:40       reactjs/ amazon-web-services/ aws-amplify/ aws-ssm/ aws-parameter-store

Question

I have an amplify application built using React JS, I have a scenario for which I am manually storing API keys in my SSM parameter store in my AWS account. However, I want to retrieve/get those values(JSON object) based on a key from my React JS app (client side). So, I have installed the aws-sdk, the AWS JavaScript sdk, and using the below code snipped I am trying to access the ssms parameter store

const AWS = require('aws-sdk');
AWS.config.update({region:'us-east-1'});
const ssm = new AWS.SSM();


const getSecret = async (secretName) => {
  console.log(`Getting secret for ${secretName}`);
  const params = {
    Name: secretName, 
    WithDecryption: true
  };

  const result = await ssm.getParameter(params).promise();
  return result.Parameter.Value;
};

module.exports = {getSecret};

I am receiving this error on running my application and while accessing the store using the getSecret function.

Unhandled Rejection (CredentialsError): Missing credentials in config, if using AWS_CONFIG_FILE, set AWS_SDK_LOAD_CONFIG=1

I believe that amplify configures the environment implicitly but since, the SSM Secrets manager is not supported yet by Amplify hence, I have to use the JS AWS SDK for this purpose. Can anyone help me spot the issue while configuring the service using AWS SDK? Or is there another or a better way to access parameter store from the client side?

Also, after surfing I have found a package named dotenv

Is it okay to store aws credentials in such a way?

1 answers

solution1
 1  2021-06-17 12:01:24

Your code to fetch parameter store keys/values shouldn't be at client side considering security implications. It should be done at server-side and functionality can be exposed over endpoint for client-side.

You can read the credentials programmatically something like below:

var AWS = require("aws-sdk");

var credentials = new AWS.SharedIniFileCredentials({profile: 'profile name'});
AWS.config.credentials = credentials;

Refrence:

  1. loading-node-credentials-shared
  2. global-config-object

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Build of React application on AWS Amplify fails in Amplify Console Storing yaml into AWS SSM store cdk python not fetching value from SSM parameter store even during Deploy Time Retrieve and store SSM values in NodeJS application aws ssm get-parameter rsa key output to file Getting an "Access Denied" error when I reload my React app on AWS Amplify Where does AWS Amplify store its resources? ./src/index.js Module not found: Can't resolve 'aws-amplify' React Protected Routes with AWS Amplify using React context looking for a sample code to read parameter value from aws parameter store
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM