AWS KMS code examples for the SDK for Go V2

Overview

Shows how to use the AWS SDK for Go V2 to work with AWS Key Management Service (AWS KMS).

AWS KMS is an encryption and key management service scaled for the cloud.

⚠ Important

• Running this code might result in charges to your AWS account.
• Running the tests might result in charges to your AWS account.
• We recommend that you grant your code least privilege. At most, grant only the minimum permissions required to perform the task. For more information, see Grant least privilege.
• This code is not tested in every AWS Region. For more information, see AWS Regional Services.

Code examples

Single actions

Code excerpts that show you how to call individual service functions.

• Create a key (CreateKey)
• Decrypt ciphertext (Decrypt)
• Encrypt text using a key (Encrypt)
• Recencrypt ciphertext from one key to another (ReEncrypt)

Run the examples

Prerequisites

For prerequisites, see the README in the gov2 folder.

Instructions

Run an action

All actions can be run at a command prompt. To get instructions for a specific example, pass the -h flag. For example:

go run ./EncryptData -h

Tests

⚠ Running tests might result in charges to your AWS account.

To find instructions for running these tests, see the README in the gov2 folder.

Additional resources

• AWS KMS Developer Guide
• AWS KMS API Reference
• SDK for Go V2 AWS KMS reference

---

Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.

SPDX-License-Identifier: Apache-2.0