SecretString or SecretBinary from the specified version of a secret, whichever contains content.
Minimum permissions
To run this command, you must have the following permissions:
- secretsmanager:GetSecretValue
- kms:Decrypt - required only if you use a customer-managed Amazon Web Services KMS key to encrypt the secret. You do not need this permission to use the account’s default Amazon Web Services managed CMK for Secrets Manager.
- To create a new version of the secret with different encrypted information, use PutSecretValue.
- To retrieve the non-encrypted details for the secret, use DescribeSecret.
External DocumentationTo learn more, visit the AWS documentation.