AWS::SecretsManager::Secret-DeletionPolicy #405

AknEp · 2020-03-02T06:50:28Z

I want to keep secret value after stack deletion, similar to other almost all resources can.

2. Scope of request

AWS::SecretsManager::Secret-DeletionPolicy DOES NOT supports DeletionPolicy.

It would be a new option for an existing attribute is desired type of request.

I expect AWS::SecretsManager::Secret to be exists after stack deletion, s3::Bucket or other many resources as is.

Use the categories as displayed in the AWS Management Console (simplified):

The text was updated successfully, but these errors were encountered:

PatMyron · 2020-03-02T07:10:02Z

Creating and deleting a stack with this template works as desired in us-east-1:

Resources:
  Resource:
    DeletionPolicy: Retain
    Type: AWS::SecretsManager::Secret

Could you share that part of your template or more details on where you're experiencing this?

AknEp · 2020-03-02T08:29:54Z

@PatMyron Thanks a lot.
Actually, I'm using AWS-CDK.

As cdk doesn't provide this option, and cloudformation's document does not mention to DeletionPolicy, I thought it's because of cloudformation.

But, it may CDK's issue. I'll make other issue on cdk repository.

Thanks.

AknEp closed this as completed Mar 2, 2020

AknEp mentioned this issue Mar 2, 2020

DeletionPolicy for secretsmanager.Secret aws/aws-cdk#6527

Closed