AWS::SecretsManager::RotationSchedule ko

matteoredaelli · December 14, 2021, 9:36pm

I’m trying to implement aws secrets rotation using the serverless framework (Adding hosted secrets rotation Lambda to an RDS stack | Alex Harvey)

  AppGraphqDbAppsSecretRotationSchedule:
    Type: AWS::SecretsManager::RotationSchedule
    Properties:
      SecretId: !Ref AppGraphqlDbAppsSecretsManagerSecret
      HostedRotationLambda:
        RotationType: PostgreSQLSingleUser
      RotationRules:
        AutomaticallyAfterDays: 30

But I get the error

 To use the HostedRotationLambda property, you must use the AWS::SecretsManager transform.

Probably I need to add “Transform: AWS::SecretsManager-2020-07-23” somewhere: where?

Below a working Aws Cloudformation template

AWSTemplateFormatVersion: 2010-09-09
Description: Rotation Lambda example stack
Transform: AWS::SecretsManager-2020-07-23

Parameters: {}

Resources:

Topic		Replies	Views
Can't deploy an AWS SM secret with lambda rotation Serverless Framework aws , lambda	0	721	March 18, 2021
Core encryption key management framework for serverless Serverless Framework	2	2178	March 18, 2018
iamRoleStatements not created to access Secrets Manager from Lambda Serverless Framework aws , lambda	2	7175	December 31, 2019
How to get secret from Secret Manager in serverless Serverless Framework aws , security	3	6527	September 16, 2021
Resolving the provider.role from Secret manager Serverless Framework cloudformation	0	2035	October 19, 2020

AWS::SecretsManager::RotationSchedule ko

Related topics