如何使用用Secrets Manager创建的L2Secret解析为L1 Cfn属性值
from aws_cdk import (
core,
aws_secretsmanager as secretsmanager,
aws_elasticache as elasticache
)
class MyStack(core.Stack):
def __init__(self, scope: core.Construct, id: str, **kwargs) -> None:
super().__init__(scope, id, **kwargs)
redis_password = secretsmanager.Secret(
self, "RedisPassword",
description="Redis auth",
generate_secret_string=secretsmanager.SecretStringGenerator(
exclude_characters='/"@'
)
)
self.redis = elasticache.CfnReplicationGroup(self, 'RedisCluster',
auth_token=redis_password.secret_value,
# other properties
)
这就产生了错误
jsii.errors.JSIIError: Object of type @aws-cdk/aws-secretsmanager.Secret is not convertible to @aws-cdk/core.CfnElement
为了解决一个秘密,我会用
AuthToken: !Sub '{{resolve:secretsmanager:${MySecret}::password}}'
但是L2Secret不像L1构造那样输出Cfn Ref(据我所知)
我错过了什么
我只是缺少了^{} 方法
这综合到
相关问题 更多 >
编程相关推荐