Class: Google::Apis::RunV1::SecretVolumeSource

Inherits:
Object
  • Object
show all
Includes:
Core::Hashable, Core::JsonObjectSupport
Defined in:
lib/google/apis/run_v1/classes.rb,
lib/google/apis/run_v1/representations.rb,
lib/google/apis/run_v1/representations.rb

Overview

A volume representing a secret stored in Google Secret Manager. The secret's value will be presented as the content of a file whose name is defined in the item path. If no items are defined, the name of the file is the secret_name. The contents of the target Secret's Data field will be presented in a volume as files using the keys in the Data field as the file names.

Instance Attribute Summary collapse

Instance Method Summary collapse

Constructor Details

#initialize(**args) ⇒ SecretVolumeSource

Returns a new instance of SecretVolumeSource.



3038
3039
3040
 
# File 'lib/google/apis/run_v1/classes.rb', line 3038

def initialize(**args)
   update!(**args)
end

Instance Attribute Details

#default_modeFixnum

Integer representation of mode bits to use on created files by default. Must be a value between 01 and 0777 (octal). If 0 or not set, it will default to

  1. Directories within the path are not affected by this setting. Notes * Internally, a umask of 0222 will be applied to any non-zero value. * This is an integer representation of the mode bits. So, the octal integer value should look exactly as the chmod numeric notation with a leading zero. Some examples: for chmod 777 (a=rwx), set to 0777 (octal) or 511 (base-10). For chmod 640 (u= rw,g=r), set to 0640 (octal) or 416 (base-10). For chmod 755 (u=rwx,g=rx,o=rx), set to 0755 (octal) or 493 (base-10). * This might be in conflict with other options that affect the file mode, like fsGroup, and the result can be other mode bits set. Corresponds to the JSON property defaultMode

Returns:

  • (Fixnum) 


3010
3011
3012
 
# File 'lib/google/apis/run_v1/classes.rb', line 3010

def default_mode
  @default_mode
end

#itemsArray<Google::Apis::RunV1::KeyToPath>

A list of secret versions to mount in the volume. If no items are specified, the volume will expose a file with the same name as the secret name. The contents of the file will be the data in the latest version of the secret. If items are specified, the key will be used as the version to fetch from Cloud Secret Manager and the path will be the name of the file exposed in the volume. When items are defined, they must specify both a key and a path. Corresponds to the JSON property items

Returns:



3020
3021
3022
 
# File 'lib/google/apis/run_v1/classes.rb', line 3020

def items
  @items
end

#optionalBoolean Also known as: optional?

Not supported by Cloud Run. Corresponds to the JSON property optional

Returns:

  • (Boolean) 


3025
3026
3027
 
# File 'lib/google/apis/run_v1/classes.rb', line 3025

def optional
  @optional
end

#secret_nameString

The name of the secret in Cloud Secret Manager. By default, the secret is assumed to be in the same project. If the secret is in another project, you must define an alias. An alias definition has the form: :projects//secrets/. If multiple alias definitions are needed, they must be separated by commas. The alias definitions must be set on the run.googleapis.com/secrets annotation. Name of the secret in the container's namespace to use. Corresponds to the JSON property secretName

Returns:

  • (String) 


3036
3037
3038
 
# File 'lib/google/apis/run_v1/classes.rb', line 3036

def secret_name
  @secret_name
end

Instance Method Details

#update!(**args) ⇒ Object

Update properties of this object



3043
3044
3045
3046
3047
3048
 
# File 'lib/google/apis/run_v1/classes.rb', line 3043

def update!(**args)
  @default_mode = args[:default_mode] if args.key?(:default_mode)
  @items = args[:items] if args.key?(:items)
  @optional = args[:optional] if args.key?(:optional)
  @secret_name = args[:secret_name] if args.key?(:secret_name)
end