Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to access SSM Parameter Store Values through AWS Lambda Function Environment Variables using Serverless Framework?

Tags:

node.js

amazon-web-services

aws-lambda

serverless-framework

aws-parameter-store

So I've configured my lambda function's .yaml file like so:

AWSTemplateFormatVersion: '2010-09-09'
Transform: 'AWS::Serverless-2016-10-31'
Description: An AWS Serverless Specification template describing your function.
Resources:
  NewUser:
    Type: 'AWS::Serverless::Function'
    Properties:
      Handler: NewUser/index.handler
      Runtime: nodejs8.10
      Environment:
        Variables:
          database_encrypt: ${ssm:databaseEncrypt}
          database_password: ${ssm:databasePassword}
          database_server: '8.8.8.8'
          database_user: ${ssm:databaseUser}
          database_version: ${ssm:databaseVersion}
      Description: ''
      MemorySize: 128
      Timeout: 15
      Role: 'arn:aws:iam::663404525923:role/LambdaRole'
      Events:
        LambdaMicroservice:
          Type: Api
          Properties:
            Path: /User/NewUser
            Method: ANY

and my lambda function looks like this:

var config = {  
  user: process.env.database_user,  
  password: process.env.database_password,  
  server: process.env.database_server,
  database: process.env.database_version,
  options: {encrypt: true}  
};

class UserService {

    constructor(){
        console.log(config);
        console.log("test test test");
        this.connectionPool = new sql.connect(config);
    }
}

and I can access the hard-coded database_server value just fine, but the ${ssm: [myParam] } command is interpreted as a string instead of following the path and accessing the value stored in SSM Parameter Store.

Most of the examples I see have long complicated paths to point to their SSM Params but as I am just trying to show that it is possible to access the SSM Params at all in this manner I'm trying to keep it as simple as possible. I am also assuming that the ${ssm: [] } command is just not escaping at all because I would expect an undefined value to be returned if no SSM Param was found at the defined path.

like image 509
Brandon Miller Avatar asked Oct 28 '22 06:10

Brandon Miller

1 Answers

SAM is a superset of CloudFormation, so the CloudFormation commands should work

      Environment:
        Variables:
          database_encrypt: '{{resolve:ssm-secure:databaseEncrypt:1}}' 
          database_password: '{{resolve:ssm-secure:databasePassword:1}}'

see https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/dynamic-references.html

like image 138
Seth E Avatar answered Nov 09 '22 09:11

Seth E
Sign in to Comment

Related questions

Save data from Sequelize query as a plain JavaScript object in a variable?
TensorflowJS text/string classification
Why does this console log twice?
Easy way to load local html file in electron
Node and npm too slow to start after install of macOS Mojave
Using Google Cloud Key Management Service to sign JSON Web Tokens
Angular 2+ http.get() stuck in pending status
putBotAlias not working in AWS LexModelBuildingService node.js
Is it possible to catch an error exit code in node.js from shell script?
Installing angular/cli crashes with error 404
Meteor Subscribe doesn't update sort order of collection
Node JS LDAP Auth User

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!