import "google.golang.org/genproto/googleapis/cloud/secretmanager/v1beta1"
var (
SecretVersion_State_name = map[int32]string{
0: "STATE_UNSPECIFIED",
1: "ENABLED",
2: "DISABLED",
3: "DESTROYED",
}
SecretVersion_State_value = map[string]int32{
"STATE_UNSPECIFIED": 0,
"ENABLED": 1,
"DISABLED": 2,
"DESTROYED": 3,
}
)Enum value maps for SecretVersion_State.
var File_google_cloud_secrets_v1beta1_resources_proto protoreflect.FileDescriptor
var File_google_cloud_secrets_v1beta1_service_proto protoreflect.FileDescriptor
func RegisterSecretManagerServiceServer(s *grpc.Server, srv SecretManagerServiceServer)
type AccessSecretVersionRequest struct {
// Required. The resource name of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] in the format
// `projects/*/secrets/*/versions/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.AccessSecretVersion][google.cloud.secrets.v1beta1.SecretManagerService.AccessSecretVersion].
func (*AccessSecretVersionRequest) Descriptor() ([]byte, []int)
Deprecated: Use AccessSecretVersionRequest.ProtoReflect.Descriptor instead.
func (x *AccessSecretVersionRequest) GetName() string
func (*AccessSecretVersionRequest) ProtoMessage()
func (x *AccessSecretVersionRequest) ProtoReflect() protoreflect.Message
func (x *AccessSecretVersionRequest) Reset()
func (x *AccessSecretVersionRequest) String() string
type AccessSecretVersionResponse struct {
// The resource name of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] in the format
// `projects/*/secrets/*/versions/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Secret payload
Payload *SecretPayload `protobuf:"bytes,2,opt,name=payload,proto3" json:"payload,omitempty"`
// contains filtered or unexported fields
}Response message for [SecretManagerService.AccessSecretVersion][google.cloud.secrets.v1beta1.SecretManagerService.AccessSecretVersion].
func (*AccessSecretVersionResponse) Descriptor() ([]byte, []int)
Deprecated: Use AccessSecretVersionResponse.ProtoReflect.Descriptor instead.
func (x *AccessSecretVersionResponse) GetName() string
func (x *AccessSecretVersionResponse) GetPayload() *SecretPayload
func (*AccessSecretVersionResponse) ProtoMessage()
func (x *AccessSecretVersionResponse) ProtoReflect() protoreflect.Message
func (x *AccessSecretVersionResponse) Reset()
func (x *AccessSecretVersionResponse) String() string
type AddSecretVersionRequest struct {
// Required. The resource name of the [Secret][google.cloud.secrets.v1beta1.Secret] to associate with the
// [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] in the format `projects/*/secrets/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. The secret payload of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
Payload *SecretPayload `protobuf:"bytes,2,opt,name=payload,proto3" json:"payload,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.AddSecretVersion][google.cloud.secrets.v1beta1.SecretManagerService.AddSecretVersion].
func (*AddSecretVersionRequest) Descriptor() ([]byte, []int)
Deprecated: Use AddSecretVersionRequest.ProtoReflect.Descriptor instead.
func (x *AddSecretVersionRequest) GetParent() string
func (x *AddSecretVersionRequest) GetPayload() *SecretPayload
func (*AddSecretVersionRequest) ProtoMessage()
func (x *AddSecretVersionRequest) ProtoReflect() protoreflect.Message
func (x *AddSecretVersionRequest) Reset()
func (x *AddSecretVersionRequest) String() string
type CreateSecretRequest struct {
// Required. The resource name of the project to associate with the
// [Secret][google.cloud.secrets.v1beta1.Secret], in the format `projects/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. This must be unique within the project.
//
// A secret ID is a string with a maximum length of 255 characters and can
// contain uppercase and lowercase letters, numerals, and the hyphen (`-`) and
// underscore (`_`) characters.
SecretId string `protobuf:"bytes,2,opt,name=secret_id,json=secretId,proto3" json:"secret_id,omitempty"`
// Required. A [Secret][google.cloud.secrets.v1beta1.Secret] with initial field values.
Secret *Secret `protobuf:"bytes,3,opt,name=secret,proto3" json:"secret,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.CreateSecret][google.cloud.secrets.v1beta1.SecretManagerService.CreateSecret].
func (*CreateSecretRequest) Descriptor() ([]byte, []int)
Deprecated: Use CreateSecretRequest.ProtoReflect.Descriptor instead.
func (x *CreateSecretRequest) GetParent() string
func (x *CreateSecretRequest) GetSecret() *Secret
func (x *CreateSecretRequest) GetSecretId() string
func (*CreateSecretRequest) ProtoMessage()
func (x *CreateSecretRequest) ProtoReflect() protoreflect.Message
func (x *CreateSecretRequest) Reset()
func (x *CreateSecretRequest) String() string
type DeleteSecretRequest struct {
// Required. The resource name of the [Secret][google.cloud.secrets.v1beta1.Secret] to delete in the format
// `projects/*/secrets/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.DeleteSecret][google.cloud.secrets.v1beta1.SecretManagerService.DeleteSecret].
func (*DeleteSecretRequest) Descriptor() ([]byte, []int)
Deprecated: Use DeleteSecretRequest.ProtoReflect.Descriptor instead.
func (x *DeleteSecretRequest) GetName() string
func (*DeleteSecretRequest) ProtoMessage()
func (x *DeleteSecretRequest) ProtoReflect() protoreflect.Message
func (x *DeleteSecretRequest) Reset()
func (x *DeleteSecretRequest) String() string
type DestroySecretVersionRequest struct {
// Required. The resource name of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to destroy in the format
// `projects/*/secrets/*/versions/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.DestroySecretVersion][google.cloud.secrets.v1beta1.SecretManagerService.DestroySecretVersion].
func (*DestroySecretVersionRequest) Descriptor() ([]byte, []int)
Deprecated: Use DestroySecretVersionRequest.ProtoReflect.Descriptor instead.
func (x *DestroySecretVersionRequest) GetName() string
func (*DestroySecretVersionRequest) ProtoMessage()
func (x *DestroySecretVersionRequest) ProtoReflect() protoreflect.Message
func (x *DestroySecretVersionRequest) Reset()
func (x *DestroySecretVersionRequest) String() string
type DisableSecretVersionRequest struct {
// Required. The resource name of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to disable in the format
// `projects/*/secrets/*/versions/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.DisableSecretVersion][google.cloud.secrets.v1beta1.SecretManagerService.DisableSecretVersion].
func (*DisableSecretVersionRequest) Descriptor() ([]byte, []int)
Deprecated: Use DisableSecretVersionRequest.ProtoReflect.Descriptor instead.
func (x *DisableSecretVersionRequest) GetName() string
func (*DisableSecretVersionRequest) ProtoMessage()
func (x *DisableSecretVersionRequest) ProtoReflect() protoreflect.Message
func (x *DisableSecretVersionRequest) Reset()
func (x *DisableSecretVersionRequest) String() string
type EnableSecretVersionRequest struct {
// Required. The resource name of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to enable in the format
// `projects/*/secrets/*/versions/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.EnableSecretVersion][google.cloud.secrets.v1beta1.SecretManagerService.EnableSecretVersion].
func (*EnableSecretVersionRequest) Descriptor() ([]byte, []int)
Deprecated: Use EnableSecretVersionRequest.ProtoReflect.Descriptor instead.
func (x *EnableSecretVersionRequest) GetName() string
func (*EnableSecretVersionRequest) ProtoMessage()
func (x *EnableSecretVersionRequest) ProtoReflect() protoreflect.Message
func (x *EnableSecretVersionRequest) Reset()
func (x *EnableSecretVersionRequest) String() string
type GetSecretRequest struct {
// Required. The resource name of the [Secret][google.cloud.secrets.v1beta1.Secret], in the format `projects/*/secrets/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.GetSecret][google.cloud.secrets.v1beta1.SecretManagerService.GetSecret].
func (*GetSecretRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetSecretRequest.ProtoReflect.Descriptor instead.
func (x *GetSecretRequest) GetName() string
func (*GetSecretRequest) ProtoMessage()
func (x *GetSecretRequest) ProtoReflect() protoreflect.Message
func (x *GetSecretRequest) Reset()
func (x *GetSecretRequest) String() string
type GetSecretVersionRequest struct {
// Required. The resource name of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] in the format
// `projects/*/secrets/*/versions/*`.
// `projects/*/secrets/*/versions/latest` is an alias to the `latest`
// [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.GetSecretVersion][google.cloud.secrets.v1beta1.SecretManagerService.GetSecretVersion].
func (*GetSecretVersionRequest) Descriptor() ([]byte, []int)
Deprecated: Use GetSecretVersionRequest.ProtoReflect.Descriptor instead.
func (x *GetSecretVersionRequest) GetName() string
func (*GetSecretVersionRequest) ProtoMessage()
func (x *GetSecretVersionRequest) ProtoReflect() protoreflect.Message
func (x *GetSecretVersionRequest) Reset()
func (x *GetSecretVersionRequest) String() string
type ListSecretVersionsRequest struct {
// Required. The resource name of the [Secret][google.cloud.secrets.v1beta1.Secret] associated with the
// [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion] to list, in the format
// `projects/*/secrets/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Optional. The maximum number of results to be returned in a single page. If
// set to 0, the server decides the number of results to return. If the
// number is greater than 25000, it is capped at 25000.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// Optional. Pagination token, returned earlier via
// ListSecretVersionsResponse.next_page_token][].
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.ListSecretVersions][google.cloud.secrets.v1beta1.SecretManagerService.ListSecretVersions].
func (*ListSecretVersionsRequest) Descriptor() ([]byte, []int)
Deprecated: Use ListSecretVersionsRequest.ProtoReflect.Descriptor instead.
func (x *ListSecretVersionsRequest) GetPageSize() int32
func (x *ListSecretVersionsRequest) GetPageToken() string
func (x *ListSecretVersionsRequest) GetParent() string
func (*ListSecretVersionsRequest) ProtoMessage()
func (x *ListSecretVersionsRequest) ProtoReflect() protoreflect.Message
func (x *ListSecretVersionsRequest) Reset()
func (x *ListSecretVersionsRequest) String() string
type ListSecretVersionsResponse struct {
// The list of [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion] sorted in reverse by
// create_time (newest first).
Versions []*SecretVersion `protobuf:"bytes,1,rep,name=versions,proto3" json:"versions,omitempty"`
// A token to retrieve the next page of results. Pass this value in
// [ListSecretVersionsRequest.page_token][google.cloud.secrets.v1beta1.ListSecretVersionsRequest.page_token] to retrieve the next page.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// The total number of [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion].
TotalSize int32 `protobuf:"varint,3,opt,name=total_size,json=totalSize,proto3" json:"total_size,omitempty"`
// contains filtered or unexported fields
}Response message for [SecretManagerService.ListSecretVersions][google.cloud.secrets.v1beta1.SecretManagerService.ListSecretVersions].
func (*ListSecretVersionsResponse) Descriptor() ([]byte, []int)
Deprecated: Use ListSecretVersionsResponse.ProtoReflect.Descriptor instead.
func (x *ListSecretVersionsResponse) GetNextPageToken() string
func (x *ListSecretVersionsResponse) GetTotalSize() int32
func (x *ListSecretVersionsResponse) GetVersions() []*SecretVersion
func (*ListSecretVersionsResponse) ProtoMessage()
func (x *ListSecretVersionsResponse) ProtoReflect() protoreflect.Message
func (x *ListSecretVersionsResponse) Reset()
func (x *ListSecretVersionsResponse) String() string
type ListSecretsRequest struct {
// Required. The resource name of the project associated with the
// [Secrets][google.cloud.secrets.v1beta1.Secret], in the format `projects/*`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Optional. The maximum number of results to be returned in a single page. If
// set to 0, the server decides the number of results to return. If the
// number is greater than 25000, it is capped at 25000.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// Optional. Pagination token, returned earlier via
// [ListSecretsResponse.next_page_token][google.cloud.secrets.v1beta1.ListSecretsResponse.next_page_token].
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.ListSecrets][google.cloud.secrets.v1beta1.SecretManagerService.ListSecrets].
func (*ListSecretsRequest) Descriptor() ([]byte, []int)
Deprecated: Use ListSecretsRequest.ProtoReflect.Descriptor instead.
func (x *ListSecretsRequest) GetPageSize() int32
func (x *ListSecretsRequest) GetPageToken() string
func (x *ListSecretsRequest) GetParent() string
func (*ListSecretsRequest) ProtoMessage()
func (x *ListSecretsRequest) ProtoReflect() protoreflect.Message
func (x *ListSecretsRequest) Reset()
func (x *ListSecretsRequest) String() string
type ListSecretsResponse struct {
// The list of [Secrets][google.cloud.secrets.v1beta1.Secret] sorted in reverse by create_time (newest
// first).
Secrets []*Secret `protobuf:"bytes,1,rep,name=secrets,proto3" json:"secrets,omitempty"`
// A token to retrieve the next page of results. Pass this value in
// [ListSecretsRequest.page_token][google.cloud.secrets.v1beta1.ListSecretsRequest.page_token] to retrieve the next page.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// The total number of [Secrets][google.cloud.secrets.v1beta1.Secret].
TotalSize int32 `protobuf:"varint,3,opt,name=total_size,json=totalSize,proto3" json:"total_size,omitempty"`
// contains filtered or unexported fields
}Response message for [SecretManagerService.ListSecrets][google.cloud.secrets.v1beta1.SecretManagerService.ListSecrets].
func (*ListSecretsResponse) Descriptor() ([]byte, []int)
Deprecated: Use ListSecretsResponse.ProtoReflect.Descriptor instead.
func (x *ListSecretsResponse) GetNextPageToken() string
func (x *ListSecretsResponse) GetSecrets() []*Secret
func (x *ListSecretsResponse) GetTotalSize() int32
func (*ListSecretsResponse) ProtoMessage()
func (x *ListSecretsResponse) ProtoReflect() protoreflect.Message
func (x *ListSecretsResponse) Reset()
func (x *ListSecretsResponse) String() string
type Replication struct {
// The replication policy for this secret.
//
// Types that are assignable to Replication:
// *Replication_Automatic_
// *Replication_UserManaged_
Replication isReplication_Replication `protobuf_oneof:"replication"`
// contains filtered or unexported fields
}A policy that defines the replication configuration of data.
func (*Replication) Descriptor() ([]byte, []int)
Deprecated: Use Replication.ProtoReflect.Descriptor instead.
func (x *Replication) GetAutomatic() *Replication_Automatic
func (m *Replication) GetReplication() isReplication_Replication
func (x *Replication) GetUserManaged() *Replication_UserManaged
func (*Replication) ProtoMessage()
func (x *Replication) ProtoReflect() protoreflect.Message
func (x *Replication) Reset()
func (x *Replication) String() string
type Replication_Automatic struct {
// contains filtered or unexported fields
}A replication policy that replicates the [Secret][google.cloud.secrets.v1beta1.Secret] payload without any restrictions.
func (*Replication_Automatic) Descriptor() ([]byte, []int)
Deprecated: Use Replication_Automatic.ProtoReflect.Descriptor instead.
func (*Replication_Automatic) ProtoMessage()
func (x *Replication_Automatic) ProtoReflect() protoreflect.Message
func (x *Replication_Automatic) Reset()
func (x *Replication_Automatic) String() string
type Replication_Automatic_ struct {
// The [Secret][google.cloud.secrets.v1beta1.Secret] will automatically be replicated without any restrictions.
Automatic *Replication_Automatic `protobuf:"bytes,1,opt,name=automatic,proto3,oneof"`
}type Replication_UserManaged struct {
// Required. The list of Replicas for this [Secret][google.cloud.secrets.v1beta1.Secret].
//
// Cannot be empty.
Replicas []*Replication_UserManaged_Replica `protobuf:"bytes,1,rep,name=replicas,proto3" json:"replicas,omitempty"`
// contains filtered or unexported fields
}A replication policy that replicates the [Secret][google.cloud.secrets.v1beta1.Secret] payload into the locations specified in [Secret.replication.user_managed.replicas][]
func (*Replication_UserManaged) Descriptor() ([]byte, []int)
Deprecated: Use Replication_UserManaged.ProtoReflect.Descriptor instead.
func (x *Replication_UserManaged) GetReplicas() []*Replication_UserManaged_Replica
func (*Replication_UserManaged) ProtoMessage()
func (x *Replication_UserManaged) ProtoReflect() protoreflect.Message
func (x *Replication_UserManaged) Reset()
func (x *Replication_UserManaged) String() string
type Replication_UserManaged_ struct {
// The [Secret][google.cloud.secrets.v1beta1.Secret] will only be replicated into the locations specified.
UserManaged *Replication_UserManaged `protobuf:"bytes,2,opt,name=user_managed,json=userManaged,proto3,oneof"`
}type Replication_UserManaged_Replica struct {
// The canonical IDs of the location to replicate data.
// For example: `"us-east1"`.
Location string `protobuf:"bytes,1,opt,name=location,proto3" json:"location,omitempty"`
// contains filtered or unexported fields
}Represents a Replica for this [Secret][google.cloud.secrets.v1beta1.Secret].
func (*Replication_UserManaged_Replica) Descriptor() ([]byte, []int)
Deprecated: Use Replication_UserManaged_Replica.ProtoReflect.Descriptor instead.
func (x *Replication_UserManaged_Replica) GetLocation() string
func (*Replication_UserManaged_Replica) ProtoMessage()
func (x *Replication_UserManaged_Replica) ProtoReflect() protoreflect.Message
func (x *Replication_UserManaged_Replica) Reset()
func (x *Replication_UserManaged_Replica) String() string
type Secret struct {
// Output only. The resource name of the [Secret][google.cloud.secrets.v1beta1.Secret] in the format `projects/*/secrets/*`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Required. Immutable. The replication policy of the secret data attached to the [Secret][google.cloud.secrets.v1beta1.Secret].
//
// The replication policy cannot be changed after the Secret has been created.
Replication *Replication `protobuf:"bytes,2,opt,name=replication,proto3" json:"replication,omitempty"`
// Output only. The time at which the [Secret][google.cloud.secrets.v1beta1.Secret] was created.
CreateTime *timestamppb.Timestamp `protobuf:"bytes,3,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// The labels assigned to this Secret.
//
// Label keys must be between 1 and 63 characters long, have a UTF-8 encoding
// of maximum 128 bytes, and must conform to the following PCRE regular
// expression: `[\p{Ll}\p{Lo}][\p{Ll}\p{Lo}\p{N}_-]{0,62}`
//
// Label values must be between 0 and 63 characters long, have a UTF-8
// encoding of maximum 128 bytes, and must conform to the following PCRE
// regular expression: `[\p{Ll}\p{Lo}\p{N}_-]{0,63}`
//
// No more than 64 labels can be assigned to a given resource.
Labels map[string]string `protobuf:"bytes,4,rep,name=labels,proto3" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// contains filtered or unexported fields
}A [Secret][google.cloud.secrets.v1beta1.Secret] is a logical secret whose value and versions can be accessed.
A [Secret][google.cloud.secrets.v1beta1.Secret] is made up of zero or more [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion] that represent the secret data.
Deprecated: Use Secret.ProtoReflect.Descriptor instead.
func (x *Secret) GetCreateTime() *timestamppb.Timestamp
func (x *Secret) GetReplication() *Replication
func (x *Secret) ProtoReflect() protoreflect.Message
type SecretManagerServiceClient interface {
// Lists [Secrets][google.cloud.secrets.v1beta1.Secret].
ListSecrets(ctx context.Context, in *ListSecretsRequest, opts ...grpc.CallOption) (*ListSecretsResponse, error)
// Creates a new [Secret][google.cloud.secrets.v1beta1.Secret] containing no [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion].
CreateSecret(ctx context.Context, in *CreateSecretRequest, opts ...grpc.CallOption) (*Secret, error)
// Creates a new [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] containing secret data and attaches
// it to an existing [Secret][google.cloud.secrets.v1beta1.Secret].
AddSecretVersion(ctx context.Context, in *AddSecretVersionRequest, opts ...grpc.CallOption) (*SecretVersion, error)
// Gets metadata for a given [Secret][google.cloud.secrets.v1beta1.Secret].
GetSecret(ctx context.Context, in *GetSecretRequest, opts ...grpc.CallOption) (*Secret, error)
// Updates metadata of an existing [Secret][google.cloud.secrets.v1beta1.Secret].
UpdateSecret(ctx context.Context, in *UpdateSecretRequest, opts ...grpc.CallOption) (*Secret, error)
// Deletes a [Secret][google.cloud.secrets.v1beta1.Secret].
DeleteSecret(ctx context.Context, in *DeleteSecretRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
// Lists [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion]. This call does not return secret
// data.
ListSecretVersions(ctx context.Context, in *ListSecretVersionsRequest, opts ...grpc.CallOption) (*ListSecretVersionsResponse, error)
// Gets metadata for a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// `projects/*/secrets/*/versions/latest` is an alias to the `latest`
// [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
GetSecretVersion(ctx context.Context, in *GetSecretVersionRequest, opts ...grpc.CallOption) (*SecretVersion, error)
// Accesses a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion]. This call returns the secret data.
//
// `projects/*/secrets/*/versions/latest` is an alias to the `latest`
// [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
AccessSecretVersion(ctx context.Context, in *AccessSecretVersionRequest, opts ...grpc.CallOption) (*AccessSecretVersionResponse, error)
// Disables a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// Sets the [state][google.cloud.secrets.v1beta1.SecretVersion.state] of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to
// [DISABLED][google.cloud.secrets.v1beta1.SecretVersion.State.DISABLED].
DisableSecretVersion(ctx context.Context, in *DisableSecretVersionRequest, opts ...grpc.CallOption) (*SecretVersion, error)
// Enables a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// Sets the [state][google.cloud.secrets.v1beta1.SecretVersion.state] of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to
// [ENABLED][google.cloud.secrets.v1beta1.SecretVersion.State.ENABLED].
EnableSecretVersion(ctx context.Context, in *EnableSecretVersionRequest, opts ...grpc.CallOption) (*SecretVersion, error)
// Destroys a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// Sets the [state][google.cloud.secrets.v1beta1.SecretVersion.state] of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to
// [DESTROYED][google.cloud.secrets.v1beta1.SecretVersion.State.DESTROYED] and irrevocably destroys the
// secret data.
DestroySecretVersion(ctx context.Context, in *DestroySecretVersionRequest, opts ...grpc.CallOption) (*SecretVersion, error)
// Sets the access control policy on the specified secret. Replaces any
// existing policy.
//
// Permissions on [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion] are enforced according
// to the policy set on the associated [Secret][google.cloud.secrets.v1beta1.Secret].
SetIamPolicy(ctx context.Context, in *v1.SetIamPolicyRequest, opts ...grpc.CallOption) (*v1.Policy, error)
// Gets the access control policy for a secret.
// Returns empty policy if the secret exists and does not have a policy set.
GetIamPolicy(ctx context.Context, in *v1.GetIamPolicyRequest, opts ...grpc.CallOption) (*v1.Policy, error)
// Returns permissions that a caller has for the specified secret.
// If the secret does not exist, this call returns an empty set of
// permissions, not a NOT_FOUND error.
//
// Note: This operation is designed to be used for building permission-aware
// UIs and command-line tools, not for authorization checking. This operation
// may "fail open" without warning.
TestIamPermissions(ctx context.Context, in *v1.TestIamPermissionsRequest, opts ...grpc.CallOption) (*v1.TestIamPermissionsResponse, error)
}SecretManagerServiceClient is the client API for SecretManagerService service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://godoc.org/google.golang.org/grpc#ClientConn.NewStream.
func NewSecretManagerServiceClient(cc grpc.ClientConnInterface) SecretManagerServiceClient
type SecretManagerServiceServer interface {
// Lists [Secrets][google.cloud.secrets.v1beta1.Secret].
ListSecrets(context.Context, *ListSecretsRequest) (*ListSecretsResponse, error)
// Creates a new [Secret][google.cloud.secrets.v1beta1.Secret] containing no [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion].
CreateSecret(context.Context, *CreateSecretRequest) (*Secret, error)
// Creates a new [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] containing secret data and attaches
// it to an existing [Secret][google.cloud.secrets.v1beta1.Secret].
AddSecretVersion(context.Context, *AddSecretVersionRequest) (*SecretVersion, error)
// Gets metadata for a given [Secret][google.cloud.secrets.v1beta1.Secret].
GetSecret(context.Context, *GetSecretRequest) (*Secret, error)
// Updates metadata of an existing [Secret][google.cloud.secrets.v1beta1.Secret].
UpdateSecret(context.Context, *UpdateSecretRequest) (*Secret, error)
// Deletes a [Secret][google.cloud.secrets.v1beta1.Secret].
DeleteSecret(context.Context, *DeleteSecretRequest) (*emptypb.Empty, error)
// Lists [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion]. This call does not return secret
// data.
ListSecretVersions(context.Context, *ListSecretVersionsRequest) (*ListSecretVersionsResponse, error)
// Gets metadata for a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// `projects/*/secrets/*/versions/latest` is an alias to the `latest`
// [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
GetSecretVersion(context.Context, *GetSecretVersionRequest) (*SecretVersion, error)
// Accesses a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion]. This call returns the secret data.
//
// `projects/*/secrets/*/versions/latest` is an alias to the `latest`
// [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
AccessSecretVersion(context.Context, *AccessSecretVersionRequest) (*AccessSecretVersionResponse, error)
// Disables a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// Sets the [state][google.cloud.secrets.v1beta1.SecretVersion.state] of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to
// [DISABLED][google.cloud.secrets.v1beta1.SecretVersion.State.DISABLED].
DisableSecretVersion(context.Context, *DisableSecretVersionRequest) (*SecretVersion, error)
// Enables a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// Sets the [state][google.cloud.secrets.v1beta1.SecretVersion.state] of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to
// [ENABLED][google.cloud.secrets.v1beta1.SecretVersion.State.ENABLED].
EnableSecretVersion(context.Context, *EnableSecretVersionRequest) (*SecretVersion, error)
// Destroys a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
//
// Sets the [state][google.cloud.secrets.v1beta1.SecretVersion.state] of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] to
// [DESTROYED][google.cloud.secrets.v1beta1.SecretVersion.State.DESTROYED] and irrevocably destroys the
// secret data.
DestroySecretVersion(context.Context, *DestroySecretVersionRequest) (*SecretVersion, error)
// Sets the access control policy on the specified secret. Replaces any
// existing policy.
//
// Permissions on [SecretVersions][google.cloud.secrets.v1beta1.SecretVersion] are enforced according
// to the policy set on the associated [Secret][google.cloud.secrets.v1beta1.Secret].
SetIamPolicy(context.Context, *v1.SetIamPolicyRequest) (*v1.Policy, error)
// Gets the access control policy for a secret.
// Returns empty policy if the secret exists and does not have a policy set.
GetIamPolicy(context.Context, *v1.GetIamPolicyRequest) (*v1.Policy, error)
// Returns permissions that a caller has for the specified secret.
// If the secret does not exist, this call returns an empty set of
// permissions, not a NOT_FOUND error.
//
// Note: This operation is designed to be used for building permission-aware
// UIs and command-line tools, not for authorization checking. This operation
// may "fail open" without warning.
TestIamPermissions(context.Context, *v1.TestIamPermissionsRequest) (*v1.TestIamPermissionsResponse, error)
}SecretManagerServiceServer is the server API for SecretManagerService service.
type SecretPayload struct {
// The secret data. Must be no larger than 64KiB.
Data []byte `protobuf:"bytes,1,opt,name=data,proto3" json:"data,omitempty"`
// contains filtered or unexported fields
}A secret payload resource in the Secret Manager API. This contains the sensitive secret data that is associated with a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
func (*SecretPayload) Descriptor() ([]byte, []int)
Deprecated: Use SecretPayload.ProtoReflect.Descriptor instead.
func (x *SecretPayload) GetData() []byte
func (*SecretPayload) ProtoMessage()
func (x *SecretPayload) ProtoReflect() protoreflect.Message
func (x *SecretPayload) Reset()
func (x *SecretPayload) String() string
type SecretVersion struct {
// Output only. The resource name of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] in the
// format `projects/*/secrets/*/versions/*`.
//
// [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] IDs in a [Secret][google.cloud.secrets.v1beta1.Secret] start at 1 and
// are incremented for each subsequent version of the secret.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Output only. The time at which the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] was created.
CreateTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// Output only. The time this [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] was destroyed.
// Only present if [state][google.cloud.secrets.v1beta1.SecretVersion.state] is
// [DESTROYED][google.cloud.secrets.v1beta1.SecretVersion.State.DESTROYED].
DestroyTime *timestamppb.Timestamp `protobuf:"bytes,3,opt,name=destroy_time,json=destroyTime,proto3" json:"destroy_time,omitempty"`
// Output only. The current state of the [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion].
State SecretVersion_State `protobuf:"varint,4,opt,name=state,proto3,enum=google.cloud.secrets.v1beta1.SecretVersion_State" json:"state,omitempty"`
// contains filtered or unexported fields
}A secret version resource in the Secret Manager API.
func (*SecretVersion) Descriptor() ([]byte, []int)
Deprecated: Use SecretVersion.ProtoReflect.Descriptor instead.
func (x *SecretVersion) GetCreateTime() *timestamppb.Timestamp
func (x *SecretVersion) GetDestroyTime() *timestamppb.Timestamp
func (x *SecretVersion) GetName() string
func (x *SecretVersion) GetState() SecretVersion_State
func (*SecretVersion) ProtoMessage()
func (x *SecretVersion) ProtoReflect() protoreflect.Message
func (x *SecretVersion) Reset()
func (x *SecretVersion) String() string
The state of a [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion], indicating if it can be accessed.
const (
// Not specified. This value is unused and invalid.
SecretVersion_STATE_UNSPECIFIED SecretVersion_State = 0
// The [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] may be accessed.
SecretVersion_ENABLED SecretVersion_State = 1
// The [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] may not be accessed, but the secret data
// is still available and can be placed back into the [ENABLED][google.cloud.secrets.v1beta1.SecretVersion.State.ENABLED]
// state.
SecretVersion_DISABLED SecretVersion_State = 2
// The [SecretVersion][google.cloud.secrets.v1beta1.SecretVersion] is destroyed and the secret data is no longer
// stored. A version may not leave this state once entered.
SecretVersion_DESTROYED SecretVersion_State = 3
)func (SecretVersion_State) Descriptor() protoreflect.EnumDescriptor
func (x SecretVersion_State) Enum() *SecretVersion_State
func (SecretVersion_State) EnumDescriptor() ([]byte, []int)
Deprecated: Use SecretVersion_State.Descriptor instead.
func (x SecretVersion_State) Number() protoreflect.EnumNumber
func (x SecretVersion_State) String() string
func (SecretVersion_State) Type() protoreflect.EnumType
type UnimplementedSecretManagerServiceServer struct {
}UnimplementedSecretManagerServiceServer can be embedded to have forward compatible implementations.
func (*UnimplementedSecretManagerServiceServer) AccessSecretVersion(context.Context, *AccessSecretVersionRequest) (*AccessSecretVersionResponse, error)
func (*UnimplementedSecretManagerServiceServer) AddSecretVersion(context.Context, *AddSecretVersionRequest) (*SecretVersion, error)
func (*UnimplementedSecretManagerServiceServer) CreateSecret(context.Context, *CreateSecretRequest) (*Secret, error)
func (*UnimplementedSecretManagerServiceServer) DeleteSecret(context.Context, *DeleteSecretRequest) (*emptypb.Empty, error)
func (*UnimplementedSecretManagerServiceServer) DestroySecretVersion(context.Context, *DestroySecretVersionRequest) (*SecretVersion, error)
func (*UnimplementedSecretManagerServiceServer) DisableSecretVersion(context.Context, *DisableSecretVersionRequest) (*SecretVersion, error)
func (*UnimplementedSecretManagerServiceServer) EnableSecretVersion(context.Context, *EnableSecretVersionRequest) (*SecretVersion, error)
func (*UnimplementedSecretManagerServiceServer) GetIamPolicy(context.Context, *v1.GetIamPolicyRequest) (*v1.Policy, error)
func (*UnimplementedSecretManagerServiceServer) GetSecret(context.Context, *GetSecretRequest) (*Secret, error)
func (*UnimplementedSecretManagerServiceServer) GetSecretVersion(context.Context, *GetSecretVersionRequest) (*SecretVersion, error)
func (*UnimplementedSecretManagerServiceServer) ListSecretVersions(context.Context, *ListSecretVersionsRequest) (*ListSecretVersionsResponse, error)
func (*UnimplementedSecretManagerServiceServer) ListSecrets(context.Context, *ListSecretsRequest) (*ListSecretsResponse, error)
func (*UnimplementedSecretManagerServiceServer) SetIamPolicy(context.Context, *v1.SetIamPolicyRequest) (*v1.Policy, error)
func (*UnimplementedSecretManagerServiceServer) TestIamPermissions(context.Context, *v1.TestIamPermissionsRequest) (*v1.TestIamPermissionsResponse, error)
func (*UnimplementedSecretManagerServiceServer) UpdateSecret(context.Context, *UpdateSecretRequest) (*Secret, error)
type UpdateSecretRequest struct {
// Required. [Secret][google.cloud.secrets.v1beta1.Secret] with updated field values.
Secret *Secret `protobuf:"bytes,1,opt,name=secret,proto3" json:"secret,omitempty"`
// Required. Specifies the fields to be updated.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request message for [SecretManagerService.UpdateSecret][google.cloud.secrets.v1beta1.SecretManagerService.UpdateSecret].
func (*UpdateSecretRequest) Descriptor() ([]byte, []int)
Deprecated: Use UpdateSecretRequest.ProtoReflect.Descriptor instead.
func (x *UpdateSecretRequest) GetSecret() *Secret
func (x *UpdateSecretRequest) GetUpdateMask() *fieldmaskpb.FieldMask
func (*UpdateSecretRequest) ProtoMessage()
func (x *UpdateSecretRequest) ProtoReflect() protoreflect.Message
func (x *UpdateSecretRequest) Reset()
func (x *UpdateSecretRequest) String() string
Package secretmanager imports 14 packages (graph) and is imported by 10 packages. Updated 2020-09-03. Refresh now. Tools for package owners.