AWS KMS

Field	Description	Scheme
`keyID*`	KMS key ID, alias, or ARN. Can include region specification for aliases (e.g., alias/ExampleAlias?region=us-east-1)	`string`
`accessKey`	Access Key ID	EnvVar
`connection`	The connection url to use, mutually exclusive with `accessKey` and `secretKey`	Connection
`endpoint`	Custom AWS Endpoint to use	`string`
`region`	The AWS region	`string`
`secretKey`	Secret Access Key	EnvVar
`skipTLSVerify`	Skip TLS verify when connecting to AWS	`boolean`

Example

awskms.yaml
---
# yaml-language-server: $schema=../../config/schemas/connection.schema.json
apiVersion: mission-control.flanksource.com/v1
kind: Connection
metadata:
  name: flanksource-awskms
spec:
  awskms:
    keyID: arn:aws:kms:eu-west-1:123123123123:alias/sops-key
    region: eu-west-1
    accessKey:
      valueFrom:
        secretKeyRef:
          name: aws-flanksource
          key: AWS_ACCESS_KEY_ID
    secretKey:
      valueFrom:
        secretKeyRef:
          name: aws-flanksource
          key: AWS_SECRET_ACCESS_KEY

Example​

Example