Overview
This node integrates with AWS Secrets Manager to retrieve secret values. It is useful for workflows that need to securely access sensitive information such as API keys, passwords, or other confidential data stored in AWS Secrets Manager. For example, it can be used to fetch database credentials dynamically during a workflow execution.
Use Case Examples
- Fetching a secret by its friendly name or ARN to use in subsequent API calls.
- Retrieving a specific version of a secret using Version ID or Version Stage labels.
- Decoding JSON-formatted secret strings automatically for easier use within workflows.
Properties
| Name | Meaning |
|---|---|
| Secret ID | Specifies the secret containing the version to retrieve, identified by either the ARN or the friendly name. |
| Version ID | Specifies the unique identifier of the secret version to retrieve. Must match Version Stage if both are provided. |
| Version Stage | Specifies the secret version to retrieve by its staging label, used to track versions during rotation. Must match Version ID if both are provided. |
| Decode JSON String | Option to decode the JSON string received from the API response, converting it into an object for easier use in the workflow. |
Output
JSON
SecretString- The secret value retrieved from AWS Secrets Manager, optionally decoded from JSON into an object.
Dependencies
- Requires AWS credentials to authenticate requests to AWS Secrets Manager API.
Troubleshooting
- Common issues include providing incorrect Secret ID, Version ID, or Version Stage, which can cause the API to fail to find the secret version.
- If the secret string is not valid JSON and decoding is enabled, JSON parsing will fail. Disable decoding to avoid this error.
- Network or permission errors may occur if AWS credentials are invalid or lack permissions to access the secret.
Links
- AWS Secrets Manager GetSecretValue API - Official AWS documentation for the GetSecretValue API operation used by this node.