Skip to content

Secrets

Create secret:

echo -n "$APIKEY" | gcloud secrets create
  dark-grafana-api-key --data-file=- \
  --replication-policy=user-managed \
  --locations=europe-west1,europe-west2,europe-west3,europe-west4,europe-west6,europe-north1

List secrets:

gcloud secrets list

List just the secret names:

gcloud --format=json secrets list | jq -r '.[].name' | sed 's|.*/||'

Show secret metadata:

gcloud secrets describe dark-grafana-api-key

Show secret content:

gcloud secrets versions access latest --secret="dark-grafana-api-key"

Dump all secrets:

for i in $(gcloud -q --format=json secrets list | jq -r '.[].name' | sed 's|.*/||'); \
  do echo -n "$i: "; gcloud -q secrets versions access latest --secret="$i"; echo; \
  done 2>/dev/null > /tmp/secrets.txt

Update secret:

echo -n "$APIKEY" | gcloud secrets versions add dark-grafana-api-key --data-file=-