/AWS1/CL_AANSECRETSMANAGERSE00

The configuration for a Secrets Manager secret. For more information, see CreateSecret.

You can propose a configuration for a new secret or an existing secret that you own by specifying the secret policy and optional KMS encryption key. If the configuration is for an existing secret and you do not specify the secret policy, the access preview uses the existing policy for the secret. If the access preview is for a new resource and you do not specify the policy, the access preview assumes a secret without a policy. To propose deletion of an existing policy, you can specify an empty string. If the proposed configuration is for a new secret and you do not specify the KMS key ID, the access preview uses the Amazon Web Services managed key aws/secretsmanager. If you specify an empty string for the KMS key ID, the access preview uses the Amazon Web Services managed key of the Amazon Web Services account. For more information about secret policy limits, see Quotas for Secrets Manager..

CONSTRUCTOR

IMPORTING

Optional arguments:

iv_kmskeyid TYPE /AWS1/AANSECRETSMANAGERSECRE00 /AWS1/AANSECRETSMANAGERSECRE00

The proposed ARN, key ID, or alias of the KMS key.

iv_secretpolicy TYPE /AWS1/AANSECRETSMANAGERSECRE01 /AWS1/AANSECRETSMANAGERSECRE01

The proposed resource policy defining who can access or manage the secret.

---

Queryable Attributes

kmsKeyId

The proposed ARN, key ID, or alias of the KMS key.

Accessible with the following methods

Method	Description
GET_KMSKEYID()	Getter for KMSKEYID, with configurable default
ASK_KMSKEYID()	Getter for KMSKEYID w/ exceptions if field has no value
HAS_KMSKEYID()	Determine if KMSKEYID has a value

secretPolicy

The proposed resource policy defining who can access or manage the secret.

Accessible with the following methods

Method	Description
GET_SECRETPOLICY()	Getter for SECRETPOLICY, with configurable default
ASK_SECRETPOLICY()	Getter for SECRETPOLICY w/ exceptions if field has no value
HAS_SECRETPOLICY()	Determine if SECRETPOLICY has a value