Skip to content
/ kms-jwks-manager Public

Small tool to rotate AWS KMS key sets and generate JWKS definitions from them

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

exaring/kms-jwks-manager

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
export.go
export.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
rotate.go
rotate.go
 
 

Repository files navigation

kms-jwks-manager

This is a simple tool to rotate a set of AWS KMS keys and generate a JWKS (JSON Web Key Set) from them.

Installation

The easiest to install is to use go:

$ go install github.com/exaring/kms-jwks-manager

Usage

Bootstrapping and rotation

The following will create three KMS keys with three respective aliases: EXAMPLE-current, EXAMPLE-next and EXAMPLE-previous.

$ kms-jwks-manager --key-alias-prefix=EXAMPLE rotate

If the keys already exist, the tool will rotate them:

  • next becomes current
  • the previous key is scheduled for deletion
  • a new next key is created
  • current becomes previous

Export

The following will export the JWKS to a file:

$ kms-jwks-manager --key-alias-prefix=EXAMPLE export --algorithm RS256 > jwks.json

About

Small tool to rotate AWS KMS key sets and generate JWKS definitions from them

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages