pulumi-aws-kotlin/com.pulumi.aws.kms.kotlin/KmsFunctions/getCipherText

getCipherText

suspend fun getCipherText(argument: GetCipherTextPlainArgs): GetCipherTextResult

The KMS ciphertext data source allows you to encrypt plaintext into ciphertext by using an AWS KMS customer master key. The value returned by this data source changes every apply. For a stable ciphertext value, see the aws.kms.Ciphertext resource.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const oauthConfig = new aws.kms.Key("oauth_config", {
    description: "oauth config",
    isEnabled: true,
});
const oauth = aws.kms.getCipherTextOutput({
    keyId: oauthConfig.keyId,
    plaintext: `{
  "client_id": "e587dbae22222f55da22",
  "client_secret": "8289575d00000ace55e1815ec13673955721b8a5"
}
`,
});
Content copied to clipboard
import pulumi
import pulumi_aws as aws
oauth_config = aws.kms.Key("oauth_config",
    description="oauth config",
    is_enabled=True)
oauth = aws.kms.get_cipher_text_output(key_id=oauth_config.key_id,
    plaintext="""{
  "client_id": "e587dbae22222f55da22",
  "client_secret": "8289575d00000ace55e1815ec13673955721b8a5"
}
""")
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
    var oauthConfig = new Aws.Kms.Key("oauth_config", new()
    {
        Description = "oauth config",
        IsEnabled = true,
    });
    var oauth = Aws.Kms.GetCipherText.Invoke(new()
    {
        KeyId = oauthConfig.KeyId,
        Plaintext = @"{
  ""client_id"": ""e587dbae22222f55da22"",
  ""client_secret"": ""8289575d00000ace55e1815ec13673955721b8a5""
}
",
    });
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kms"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		oauthConfig, err := kms.NewKey(ctx, "oauth_config", &kms.KeyArgs{
			Description: pulumi.String("oauth config"),
			IsEnabled:   pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		_ = kms.GetCipherTextOutput(ctx, kms.GetCipherTextOutputArgs{
			KeyId:     oauthConfig.KeyId,
			Plaintext: pulumi.String("{\n  \"client_id\": \"e587dbae22222f55da22\",\n  \"client_secret\": \"8289575d00000ace55e1815ec13673955721b8a5\"\n}\n"),
		}, nil)
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.kms.Key;
import com.pulumi.aws.kms.KeyArgs;
import com.pulumi.aws.kms.KmsFunctions;
import com.pulumi.aws.kms.inputs.GetCipherTextArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var oauthConfig = new Key("oauthConfig", KeyArgs.builder()
            .description("oauth config")
            .isEnabled(true)
            .build());
        final var oauth = KmsFunctions.getCipherText(GetCipherTextArgs.builder()
            .keyId(oauthConfig.keyId())
            .plaintext("""
{
  "client_id": "e587dbae22222f55da22",
  "client_secret": "8289575d00000ace55e1815ec13673955721b8a5"
}
            """)
            .build());
    }
}
Content copied to clipboard
resources:
  oauthConfig:
    type: aws:kms:Key
    name: oauth_config
    properties:
      description: oauth config
      isEnabled: true
variables:
  oauth:
    fn::invoke:
      function: aws:kms:getCipherText
      arguments:
        keyId: ${oauthConfig.keyId}
        plaintext: |
          {
            "client_id": "e587dbae22222f55da22",
            "client_secret": "8289575d00000ace55e1815ec13673955721b8a5"
          }
Content copied to clipboard

Return

A collection of values returned by getCipherText.

Parameters

argument

A collection of arguments for invoking getCipherText.

suspend fun getCipherText(context: Map<String, String>? = null, keyId: String, plaintext: String): GetCipherTextResult

Return

A collection of values returned by getCipherText.

Parameters

context

An optional mapping that makes up the encryption context.

keyId

Globally unique key ID for the customer master key.

plaintext

Data to be encrypted. Note that this may show up in logs, and it will be stored in the state file.

See also

.

suspend fun getCipherText(argument: suspend GetCipherTextPlainArgsBuilder.() -> Unit): GetCipherTextResult

Return

A collection of values returned by getCipherText.

Parameters

argument

Builder for com.pulumi.aws.kms.kotlin.inputs.GetCipherTextPlainArgs.

See also

.