stackoom
  简体   繁体   中英

Update data in Google Cloud Secret Manager using Node.js

 原文  2021-07-27 12:08:47       node.js/ google-cloud-platform/ google-secret-manager

Question

I have some data in Google Cloud Secret Manager is there any way to update that data. I am trying to update by using below code

client.updateSecret({
  secret: {
    name: 'projects/xyz/secrets/test',
    labels: {
      secretmanager: 'rocks',
    },
  },
  updateMask: {
    paths: ['labels'],
  },
}).then(res => {
  let [data] = res
  console.log('success in updating', data)
}).catch(rej => {
  console.log('erro in updating', rej)
})

3 answers

solution1
 1  2021-07-27 16:12:31

Data in Secret Manager is stored on the Secret Version .

  • Secret - contains the metadata about the secret including the name, timestamps, labels, etc.
  • Secret Version - contains the actual secret data.

A Secret contains 0 or more Secret Versions . Secret Versions are immutable, so you cannot update the value inside. However, you can add a new Secret Version . This will create a new Secret Version and update the value of the "latest" pointer:

const [version] = await client.addSecretVersion({
  parent: parent,
  payload: {
    data: myNewPayload,
  },
});

For more information on versioning, check out:

solution2
 0  2021-07-27 15:34:34

You can use this "Node.js" sample code as a reference to update the data in Google Cloud Secret Manager.

/**
 * TODO(developer): Uncomment these variables before running.
 */
// const name = 'projects/my-project/secrets/my-secret';

// Imports the Secret Manager library
const {SecretManagerServiceClient} = require('@google-cloud/secret-manager');

// Instantiates a client
const client = new SecretManagerServiceClient();

async function updateSecret() {
  const [secret] = await client.updateSecret({
    secret: {
      name: name,
      labels: {
        secretmanager: 'rocks',
      },
    },
    updateMask: {
      paths: ['labels'],
    },
  });

  console.info(`Updated secret ${secret.name}`);
}

updateSecret();

Refer to this documentation for more information.

solution3
 0  2021-07-27 15:59:52

Assuming the secret already exists, you need to create a secret version to update the secret data. Here's the method I use.

const { SecretManagerServiceClient } = require('@google-cloud/secret-manager');
const client = new SecretManagerServiceClient()
const parent = 'projects/YOUR_PROJECT' 

async function addSecretVersion(secretName, payload) {

    if (typeof payload != 'string') throw `Secret payload must be a string`
    const [version] = await client.addSecretVersion({
        parent: `${parent}/secrets/${secretName}`,
        payload: {
            data: Buffer.from(payload, 'utf8'),
        },
    })
    console.info(`Added secret version ${version.name}`)
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Node.js - Access Google Secret Manager locally Google Cloud Datastore Update Entity: Node.js Client How to access Secret Manager in Cloud Function node.js10? Unable to connect to google cloud sql service using node.js Create SignedURL of google cloud storage object using Node.js List Folders in Google Cloud Storage Bucket using Node.js Node.js google cloud storage authentication using credentials token Google Cloud Datastore Queries using Node.js Using Firebase parameters with Google Cloud Storage under node.js Uploading multiple files to Google Cloud using multer and Node.js
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM