Using parameter utility in the example

leandrodamascena · leandrodamascena · commit 07a6ccf5b74a · 2023-09-11T22:52:46.000+01:00
diff --git a/docs/utilities/data_classes.md b/docs/utilities/data_classes.md
@@ -1095,6 +1095,22 @@ This example is based on the AWS Blog post [Introducing Amazon S3 Object Lambda
         file_key = event.detail.object.key
     ```
 
+### Secrets Manager
+
+AWS Secrets Manager rotation uses an AWS Lambda function to update the secret. [Click here](https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets.html){target="_blank"} for more information about rotating AWS Secrets Manager secrets.
+
+=== "app.py"
+
+    ```python hl_lines="2 7 11"
+    --8<-- "examples/event_sources/src/secrets_manager.py"
+    ```
+
+=== "Secrets Manager Example Event"
+
+    ```json
+    --8<-- "tests/events/secretsManagerEvent.json"
+    ```
+
 ### SES
 
 === "app.py"
@@ -1161,34 +1177,6 @@ You can register your Lambda functions as targets within an Amazon VPC Lattice s
     --8<-- "examples/event_sources/src/vpc_lattice_payload.json"
     ```
 
-### Secrets Manager
-
-=== "app.py"
-
-    ```python
-    import boto3
-
-    from aws_lambda_powertools.utilities.data_classes import event_source, SecretsManagerEvent
-
-    @event_source(data_class=SecretsManagerEvent)
-    def lambda_handler(event: SecretsManagerEvent, context):
-        service_client = boto3.client('secretsmanager', endpoint_url=os.environ['SECRETS_MANAGER_ENDPOINT'])
-        secret = service_client.get_secret_value(
-            SecretId=event.secret_id,
-            VersionId=event.client_request_token,
-            VersionStage="AWSCURRENT"
-            )
-        # {'Name': 'MyTestDatabaseSecret','SecretString': '{\n  "username":"david",\n  "password":"EXAMPLE-PASSWORD"\n}\n',}
-        # work with secrets afterwards
-        # see - https://github.com/aws-samples/aws-secrets-manager-rotation-lambdas
-        ...
-    ```
-=== "Secrets Manager Example Event"
-
-    ```json
-    --8<-- "tests/events/secretsManagerEvent.json"
-    ```
-
 ## Advanced
 
 ### Debugging
diff --git a/examples/event_sources/src/secrets_manager.py b/examples/event_sources/src/secrets_manager.py
@@ -0,0 +1,16 @@
+from aws_lambda_powertools.utilities import parameters
+from aws_lambda_powertools.utilities.data_classes import SecretsManagerEvent, event_source
+
+secrets_provider = parameters.SecretsProvider()
+
+
+@event_source(data_class=SecretsManagerEvent)
+def lambda_handler(event: SecretsManagerEvent, context):
+    # Getting secret value using Parameter utility
+    # See https://docs.powertools.aws.dev/lambda/python/latest/utilities/parameters/
+    secret = secrets_provider.get(event.secret_id, VersionId=event.client_request_token, VersionStage="AWSCURRENT")
+
+    # You need to work with secrets afterwards
+    # Check more examples: https://github.com/aws-samples/aws-secrets-manager-rotation-lambdas
+
+    return secret
diff --git a/examples/event_sources/src/secrets_manager_event.json b/examples/event_sources/src/secrets_manager_event.json
@@ -0,0 +1,5 @@
+{
+    "SecretId":"arn:aws:secretsmanager:us-west-2:123456789012:secret:MyTestDatabaseSecret-a1b2c3",
+    "ClientRequestToken":"550e8400-e29b-41d4-a716-446655440000",
+    "Step":"createSecret"
+}
