This change introduces a new Construct, Wallet, which generates an Ethereum Wallet and securely stores it in an AWS Secret encrypted with an AWS KMS Encryption Key. Access is minimized so that only explicitly authorized IAM Principals can read or write the Secret Data.
Usage
To create a new wallet:
const wallet = new cdk3.Wallet(this, "Wallet");
To access the public key and address Resource Properties:
wallet.publicKey;
wallet.address;
By default, the KMS Key and AWS Secret Resources have generated names. To help with organization, you can set the walletName so that those Resources are named according to the convention, ${walletName}-<prefix>. For example: my-wallet-key and my-wallet-secret.
new cdk3.Wallet(this, "Wallet", {
walletName: "my-wallet",
});
To use an existing KMS Key to encrypt the AWS Secret (instead of generating a new one), set the encryptionKey property.
new cdk3.Wallet(this, "Wallet", {
encryptionKey: myKey,
});
Fixes #1
This change introduces a new Construct,
Wallet, which generates an Ethereum Wallet and securely stores it in an AWS Secret encrypted with an AWS KMS Encryption Key. Access is minimized so that only explicitly authorized IAM Principals can read or write the Secret Data.Usage
To create a new wallet:
To access the public key and address Resource Properties:
By default, the KMS Key and AWS Secret Resources have generated names. To help with organization, you can set the
walletNameso that those Resources are named according to the convention,${walletName}-<prefix>. For example:my-wallet-keyandmy-wallet-secret.To use an existing KMS Key to encrypt the AWS Secret (instead of generating a new one), set the
encryptionKeyproperty.