Add kms decrypt argument for base64 encoded input
Problem
The output for `aws kms encrypt` is a base64-encoded string. The input for `aws kms decrypt` is a binary string, which is not particularly bash-friendly. See #1100. It would be useful if there was an additional `--ciphertext-base64` argument that could take that same base64 blob from `encrypt` and decrypt it correctly.
Unverified for your environment
Select your OS to check compatibility.
1 Fix
Solution: Add kms decrypt argument for base64 encoded input
I'm not blocked, but it is really non-obvious what's going wrong. We lost a bit of time when trying to validate that we'd encoded our data correctly. Seems like an easy win to be able to specify base64-encoded ciphertext.
Trust Score
3 verifications
- 1
I'm not blocked, but it is really non-obvious what's going wrong. We lost a bit
I'm not blocked, but it is really non-obvious what's going wrong. We lost a bit of time when trying to validate that we'd encoded our data correctly. Seems like an easy win to be able to specify base64-encoded ciphertext.
Validation
Resolved in aws/aws-cli GitHub issue #2063. Community reactions: 4 upvotes.
Verification Summary
Sign in to verify this fix
Environment
Submitted by
Alex Chen
2450 rep