Docs Home
akeyless 1.9.0 published on Monday, Apr 14, 2025 by akeyless-community
akeyless.DynamicSecretGcp
Explore with Pulumi AI
akeyless 1.9.0 published on Monday, Apr 14, 2025 by akeyless-community
Google Cloud Provider (GCP) dynamic secret resource
Create DynamicSecretGcp Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new DynamicSecretGcp(name: string, args?: DynamicSecretGcpArgs, opts?: CustomResourceOptions);@overload
def DynamicSecretGcp(resource_name: str,
args: Optional[DynamicSecretGcpArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def DynamicSecretGcp(resource_name: str,
opts: Optional[ResourceOptions] = None,
delete_protection: Optional[str] = None,
dynamic_secret_gcp_id: Optional[str] = None,
encryption_key_name: Optional[str] = None,
gcp_cred_type: Optional[str] = None,
gcp_key: Optional[str] = None,
gcp_key_algo: Optional[str] = None,
gcp_sa_email: Optional[str] = None,
gcp_token_scopes: Optional[str] = None,
name: Optional[str] = None,
role_binding: Optional[str] = None,
service_account_type: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
target_name: Optional[str] = None,
user_ttl: Optional[str] = None)func NewDynamicSecretGcp(ctx *Context, name string, args *DynamicSecretGcpArgs, opts ...ResourceOption) (*DynamicSecretGcp, error)public DynamicSecretGcp(string name, DynamicSecretGcpArgs? args = null, CustomResourceOptions? opts = null)
public DynamicSecretGcp(String name, DynamicSecretGcpArgs args)
public DynamicSecretGcp(String name, DynamicSecretGcpArgs args, CustomResourceOptions options)
type: akeyless:DynamicSecretGcp
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args DynamicSecretGcpArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args DynamicSecretGcpArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args DynamicSecretGcpArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args DynamicSecretGcpArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args DynamicSecretGcpArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var dynamicSecretGcpResource = new Akeyless.DynamicSecretGcp("dynamicSecretGcpResource", new()
{
DeleteProtection = "string",
DynamicSecretGcpId = "string",
EncryptionKeyName = "string",
GcpCredType = "string",
GcpKey = "string",
GcpKeyAlgo = "string",
GcpSaEmail = "string",
GcpTokenScopes = "string",
Name = "string",
RoleBinding = "string",
ServiceAccountType = "string",
Tags = new[]
{
"string",
},
TargetName = "string",
UserTtl = "string",
});
example, err := akeyless.NewDynamicSecretGcp(ctx, "dynamicSecretGcpResource", &akeyless.DynamicSecretGcpArgs{
DeleteProtection: pulumi.String("string"),
DynamicSecretGcpId: pulumi.String("string"),
EncryptionKeyName: pulumi.String("string"),
GcpCredType: pulumi.String("string"),
GcpKey: pulumi.String("string"),
GcpKeyAlgo: pulumi.String("string"),
GcpSaEmail: pulumi.String("string"),
GcpTokenScopes: pulumi.String("string"),
Name: pulumi.String("string"),
RoleBinding: pulumi.String("string"),
ServiceAccountType: pulumi.String("string"),
Tags: pulumi.StringArray{
pulumi.String("string"),
},
TargetName: pulumi.String("string"),
UserTtl: pulumi.String("string"),
})
var dynamicSecretGcpResource = new DynamicSecretGcp("dynamicSecretGcpResource", DynamicSecretGcpArgs.builder()
.deleteProtection("string")
.dynamicSecretGcpId("string")
.encryptionKeyName("string")
.gcpCredType("string")
.gcpKey("string")
.gcpKeyAlgo("string")
.gcpSaEmail("string")
.gcpTokenScopes("string")
.name("string")
.roleBinding("string")
.serviceAccountType("string")
.tags("string")
.targetName("string")
.userTtl("string")
.build());
dynamic_secret_gcp_resource = akeyless.DynamicSecretGcp("dynamicSecretGcpResource",
delete_protection="string",
dynamic_secret_gcp_id="string",
encryption_key_name="string",
gcp_cred_type="string",
gcp_key="string",
gcp_key_algo="string",
gcp_sa_email="string",
gcp_token_scopes="string",
name="string",
role_binding="string",
service_account_type="string",
tags=["string"],
target_name="string",
user_ttl="string")
const dynamicSecretGcpResource = new akeyless.DynamicSecretGcp("dynamicSecretGcpResource", {
deleteProtection: "string",
dynamicSecretGcpId: "string",
encryptionKeyName: "string",
gcpCredType: "string",
gcpKey: "string",
gcpKeyAlgo: "string",
gcpSaEmail: "string",
gcpTokenScopes: "string",
name: "string",
roleBinding: "string",
serviceAccountType: "string",
tags: ["string"],
targetName: "string",
userTtl: "string",
});
type: akeyless:DynamicSecretGcp
properties:
deleteProtection: string
dynamicSecretGcpId: string
encryptionKeyName: string
gcpCredType: string
gcpKey: string
gcpKeyAlgo: string
gcpSaEmail: string
gcpTokenScopes: string
name: string
roleBinding: string
serviceAccountType: string
tags:
- string
targetName: string
userTtl: string
DynamicSecretGcp Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The DynamicSecretGcp resource accepts the following input properties:
- Delete
Protection string - Protection from accidental deletion of this item, [true/false]
- Dynamic
Secret stringGcp Id - The ID of this resource.
- Encryption
Key stringName - Encrypt dynamic secret details with following key
- Gcp
Cred stringType - Credentials type, options are [token, key]
- Gcp
Key string - Base64-encoded service account private key text
- Gcp
Key stringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- Gcp
Sa stringEmail - GCP service account email
- Gcp
Token stringScopes - Access token scopes list, e.g. scope1,scope2
- Name string
- Dynamic secret name
- Role
Binding string - Role binding definitions in json format
- Service
Account stringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- List<string>
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- Target
Name string - Name of existing target to use in dynamic secret creation
- User
Ttl string - User TTL (<=60m for access token)
- Delete
Protection string - Protection from accidental deletion of this item, [true/false]
- Dynamic
Secret stringGcp Id - The ID of this resource.
- Encryption
Key stringName - Encrypt dynamic secret details with following key
- Gcp
Cred stringType - Credentials type, options are [token, key]
- Gcp
Key string - Base64-encoded service account private key text
- Gcp
Key stringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- Gcp
Sa stringEmail - GCP service account email
- Gcp
Token stringScopes - Access token scopes list, e.g. scope1,scope2
- Name string
- Dynamic secret name
- Role
Binding string - Role binding definitions in json format
- Service
Account stringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- []string
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- Target
Name string - Name of existing target to use in dynamic secret creation
- User
Ttl string - User TTL (<=60m for access token)
- delete
Protection String - Protection from accidental deletion of this item, [true/false]
- dynamic
Secret StringGcp Id - The ID of this resource.
- encryption
Key StringName - Encrypt dynamic secret details with following key
- gcp
Cred StringType - Credentials type, options are [token, key]
- gcp
Key String - Base64-encoded service account private key text
- gcp
Key StringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp
Sa StringEmail - GCP service account email
- gcp
Token StringScopes - Access token scopes list, e.g. scope1,scope2
- name String
- Dynamic secret name
- role
Binding String - Role binding definitions in json format
- service
Account StringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- List<String>
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target
Name String - Name of existing target to use in dynamic secret creation
- user
Ttl String - User TTL (<=60m for access token)
- delete
Protection string - Protection from accidental deletion of this item, [true/false]
- dynamic
Secret stringGcp Id - The ID of this resource.
- encryption
Key stringName - Encrypt dynamic secret details with following key
- gcp
Cred stringType - Credentials type, options are [token, key]
- gcp
Key string - Base64-encoded service account private key text
- gcp
Key stringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp
Sa stringEmail - GCP service account email
- gcp
Token stringScopes - Access token scopes list, e.g. scope1,scope2
- name string
- Dynamic secret name
- role
Binding string - Role binding definitions in json format
- service
Account stringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- string[]
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target
Name string - Name of existing target to use in dynamic secret creation
- user
Ttl string - User TTL (<=60m for access token)
- delete_
protection str - Protection from accidental deletion of this item, [true/false]
- dynamic_
secret_ strgcp_ id - The ID of this resource.
- encryption_
key_ strname - Encrypt dynamic secret details with following key
- gcp_
cred_ strtype - Credentials type, options are [token, key]
- gcp_
key str - Base64-encoded service account private key text
- gcp_
key_ stralgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp_
sa_ stremail - GCP service account email
- gcp_
token_ strscopes - Access token scopes list, e.g. scope1,scope2
- name str
- Dynamic secret name
- role_
binding str - Role binding definitions in json format
- service_
account_ strtype - The type of the gcp dynamic secret. Options[fixed, dynamic]
- Sequence[str]
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target_
name str - Name of existing target to use in dynamic secret creation
- user_
ttl str - User TTL (<=60m for access token)
- delete
Protection String - Protection from accidental deletion of this item, [true/false]
- dynamic
Secret StringGcp Id - The ID of this resource.
- encryption
Key StringName - Encrypt dynamic secret details with following key
- gcp
Cred StringType - Credentials type, options are [token, key]
- gcp
Key String - Base64-encoded service account private key text
- gcp
Key StringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp
Sa StringEmail - GCP service account email
- gcp
Token StringScopes - Access token scopes list, e.g. scope1,scope2
- name String
- Dynamic secret name
- role
Binding String - Role binding definitions in json format
- service
Account StringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- List<String>
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target
Name String - Name of existing target to use in dynamic secret creation
- user
Ttl String - User TTL (<=60m for access token)
Outputs
All input properties are implicitly available as output properties. Additionally, the DynamicSecretGcp resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing DynamicSecretGcp Resource
Get an existing DynamicSecretGcp resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: DynamicSecretGcpState, opts?: CustomResourceOptions): DynamicSecretGcp@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
delete_protection: Optional[str] = None,
dynamic_secret_gcp_id: Optional[str] = None,
encryption_key_name: Optional[str] = None,
gcp_cred_type: Optional[str] = None,
gcp_key: Optional[str] = None,
gcp_key_algo: Optional[str] = None,
gcp_sa_email: Optional[str] = None,
gcp_token_scopes: Optional[str] = None,
name: Optional[str] = None,
role_binding: Optional[str] = None,
service_account_type: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
target_name: Optional[str] = None,
user_ttl: Optional[str] = None) -> DynamicSecretGcpfunc GetDynamicSecretGcp(ctx *Context, name string, id IDInput, state *DynamicSecretGcpState, opts ...ResourceOption) (*DynamicSecretGcp, error)public static DynamicSecretGcp Get(string name, Input<string> id, DynamicSecretGcpState? state, CustomResourceOptions? opts = null)public static DynamicSecretGcp get(String name, Output<String> id, DynamicSecretGcpState state, CustomResourceOptions options)resources: _: type: akeyless:DynamicSecretGcp get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Delete
Protection string - Protection from accidental deletion of this item, [true/false]
- Dynamic
Secret stringGcp Id - The ID of this resource.
- Encryption
Key stringName - Encrypt dynamic secret details with following key
- Gcp
Cred stringType - Credentials type, options are [token, key]
- Gcp
Key string - Base64-encoded service account private key text
- Gcp
Key stringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- Gcp
Sa stringEmail - GCP service account email
- Gcp
Token stringScopes - Access token scopes list, e.g. scope1,scope2
- Name string
- Dynamic secret name
- Role
Binding string - Role binding definitions in json format
- Service
Account stringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- List<string>
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- Target
Name string - Name of existing target to use in dynamic secret creation
- User
Ttl string - User TTL (<=60m for access token)
- Delete
Protection string - Protection from accidental deletion of this item, [true/false]
- Dynamic
Secret stringGcp Id - The ID of this resource.
- Encryption
Key stringName - Encrypt dynamic secret details with following key
- Gcp
Cred stringType - Credentials type, options are [token, key]
- Gcp
Key string - Base64-encoded service account private key text
- Gcp
Key stringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- Gcp
Sa stringEmail - GCP service account email
- Gcp
Token stringScopes - Access token scopes list, e.g. scope1,scope2
- Name string
- Dynamic secret name
- Role
Binding string - Role binding definitions in json format
- Service
Account stringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- []string
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- Target
Name string - Name of existing target to use in dynamic secret creation
- User
Ttl string - User TTL (<=60m for access token)
- delete
Protection String - Protection from accidental deletion of this item, [true/false]
- dynamic
Secret StringGcp Id - The ID of this resource.
- encryption
Key StringName - Encrypt dynamic secret details with following key
- gcp
Cred StringType - Credentials type, options are [token, key]
- gcp
Key String - Base64-encoded service account private key text
- gcp
Key StringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp
Sa StringEmail - GCP service account email
- gcp
Token StringScopes - Access token scopes list, e.g. scope1,scope2
- name String
- Dynamic secret name
- role
Binding String - Role binding definitions in json format
- service
Account StringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- List<String>
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target
Name String - Name of existing target to use in dynamic secret creation
- user
Ttl String - User TTL (<=60m for access token)
- delete
Protection string - Protection from accidental deletion of this item, [true/false]
- dynamic
Secret stringGcp Id - The ID of this resource.
- encryption
Key stringName - Encrypt dynamic secret details with following key
- gcp
Cred stringType - Credentials type, options are [token, key]
- gcp
Key string - Base64-encoded service account private key text
- gcp
Key stringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp
Sa stringEmail - GCP service account email
- gcp
Token stringScopes - Access token scopes list, e.g. scope1,scope2
- name string
- Dynamic secret name
- role
Binding string - Role binding definitions in json format
- service
Account stringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- string[]
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target
Name string - Name of existing target to use in dynamic secret creation
- user
Ttl string - User TTL (<=60m for access token)
- delete_
protection str - Protection from accidental deletion of this item, [true/false]
- dynamic_
secret_ strgcp_ id - The ID of this resource.
- encryption_
key_ strname - Encrypt dynamic secret details with following key
- gcp_
cred_ strtype - Credentials type, options are [token, key]
- gcp_
key str - Base64-encoded service account private key text
- gcp_
key_ stralgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp_
sa_ stremail - GCP service account email
- gcp_
token_ strscopes - Access token scopes list, e.g. scope1,scope2
- name str
- Dynamic secret name
- role_
binding str - Role binding definitions in json format
- service_
account_ strtype - The type of the gcp dynamic secret. Options[fixed, dynamic]
- Sequence[str]
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target_
name str - Name of existing target to use in dynamic secret creation
- user_
ttl str - User TTL (<=60m for access token)
- delete
Protection String - Protection from accidental deletion of this item, [true/false]
- dynamic
Secret StringGcp Id - The ID of this resource.
- encryption
Key StringName - Encrypt dynamic secret details with following key
- gcp
Cred StringType - Credentials type, options are [token, key]
- gcp
Key String - Base64-encoded service account private key text
- gcp
Key StringAlgo - Service account key algorithm, e.g. KEYALGRSA_1024
- gcp
Sa StringEmail - GCP service account email
- gcp
Token StringScopes - Access token scopes list, e.g. scope1,scope2
- name String
- Dynamic secret name
- role
Binding String - Role binding definitions in json format
- service
Account StringType - The type of the gcp dynamic secret. Options[fixed, dynamic]
- List<String>
- List of the tags attached to this secret. To specify multiple tags use argument multiple times: --tag Tag1 --tag Tag2
- target
Name String - Name of existing target to use in dynamic secret creation
- user
Ttl String - User TTL (<=60m for access token)
Package Details
- Repository
- akeyless akeyless-community/terraform-provider-akeyless
- License
- Notes
- This Pulumi package is based on the
akeylessTerraform Provider.
akeyless 1.9.0 published on Monday, Apr 14, 2025 by akeyless-community