-
Notifications
You must be signed in to change notification settings - Fork 169
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feature request: chamber check
command for target AWS Account
#331
Labels
Comments
simonireilly
changed the title
feature request: chamber
feature request: chamber Feb 27, 2022
check
command for environmentcheck
command for target AWS Account
This issue has been automatically marked |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
User Story
As a chamber user
I want to be able to set a collection of required environment variables in my namespace
so that I can return a non-zero exit code when required values do not exist in the target AWS Account
Justification
When considering portability, I tend to use a separate AWS account as
dev
,prod
.When I use chamber to manage configuration in the AWS SSM parameter store, I want a command I can run, that has list-only permissions, but throws a non-zero code for missing values in the service.
Why
Proposal
There should be a file that supports required environment variables; for example a
.env.example
file.API
chamber check [--format <format=json>] [--template-file <file=chamber.json>] <service>
Permissions; would require List/Describe permissions, but not Get/Read permissions:
dev
environment to check for required configurationprod
environment to check for required configuration; without exposing Read access (principles of least privilege)Behaviour;
JSON Example
File format as
chamber.json
:DotEnv Example
File format as
.env.example
:Alternatives
Implement your own secret existence checker; a basic one could just use grep:
The text was updated successfully, but these errors were encountered: