Gcp Secret Manager Trait
Deprecated since2.5.0 The Google Secret Manager trait can be used to use secrets from Google Secret Manager
The Google Secret Manager trait is disabled by default.
For more information about how to use secrets from Google Secret Manager take a look at the components docs: AWS Secrets Manager component
A sample execution of this trait, would require the following trait options: -t gpc-secret-manager.enabled=true -t gpc-secret-manager.project-id="project-id" -t gpc-secret-manager.service-account-key="file:serviceaccount.json"
To enable the automatic context reload on secrets updates you should define the following trait options: -t gpc-secret-manager.enabled=true -t gpc-secret-manager.project-id="project-id" -t gpc-secret-manager.service-account-key="file:serviceaccount.json" -t gcp-secret-manager.subscription-name="pubsub-sub" -t gcp-secret-manager.context-reload-enabled="true" -t gcp-secret-manager.refresh-enabled="true" -t gcp-secret-manager.refresh-period="30000" -t gcp-secret-manager.secrets="test*"
The trait is deprecated and will removed in future release versions: configure directly the Camel properties as required by the component instead. |
This trait is available in the following profiles: Kubernetes, Knative, OpenShift.
Configuration
Trait properties can be specified when running any integration with the CLI:
$ kamel run --trait gcp-secret-manager.[key]=[value] --trait gcp-secret-manager.[key2]=[value2] integration.yaml
The following configuration options are available:
Property | Type | Description |
---|---|---|
|
| Can be used to enable or disable a trait. All traits share this common property. |
|
| Enables automatic configuration of the trait. |
|
| The Project Id from Google Cloud |
|
| The Path to a service account Key File to use secrets from Google Secret Manager |
|
| Define if we want to use the Default Instance approach for accessing the Google Secret Manager service |
|
| Define if we want to use the Camel Context Reload feature or not |
|
| Define if we want to use the Refresh Feature for secrets |
|
| If Refresh is enabled, this defines the interval to check the refresh event |
|
| If Refresh is enabled, the regular expression representing the secrets we want to track |
|
| If Refresh is enabled, this defines the subscription name to the Google PubSub topic used to keep track of updates |