NOTE: We strongly urge you to revoke the secrets on AWS as simply deleting them on CircleCI will not disable the keys.
If you have a legacy AWS Integration key pair enabled for your project, you can use the following API request to remove the secrets from your project settings.
This API call will remove the stored access_key_id
and secret_access_key
secrets for your project. You will need to create and pass a Personal API Token in the "circle-token" HTTP header in order to authenticate the API call:
Note: Replace {vcs} (github or bitbucket), {org}, and {project} with the appropriate values.
curl -X PUT \
--url https://circleci.com/api/v1.1/project/{vcs}/{org}/{project}/settings \
--header "circle-token: $CIRCLECI_TOKEN" \
--header 'content-type: application/json' \
--data '{"aws":{"keypair":null}}'
We can then confirm that the legacy AWS Integration secrets are indeed removed with the following API call:
curl -X GET 'https://circleci.com/api/v1.1/project/{vcs}/{org}/{project}/settings' \
-H "circle-token: $CIRCLECI_TOKEN" | jq '.aws'
It will return the following if the legacy AWS Integration secrets have been removed successfully.
{
"keypair": null
}
Comments
Article is closed for comments.