Docs Home
Harness v0.7.1 published on Saturday, Mar 29, 2025 by Pulumi
harness.platform.GcpSecretManagerConnector
Explore with Pulumi AI
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as harness from "@pulumi/harness";
const gcpSmManual = new harness.platform.GcpSecretManagerConnector("gcp_sm_manual", {
identifier: "identifier",
name: "name",
description: "test",
tags: ["foo:bar"],
delegateSelectors: ["harness-delegate"],
credentialsRef: `account.${test.id}`,
});
const gcpSmInherit = new harness.platform.GcpSecretManagerConnector("gcp_sm_inherit", {
identifier: "identifier",
name: "name",
description: "test",
tags: ["foo:bar"],
delegateSelectors: ["harness-delegate"],
inheritFromDelegate: true,
});
const gcpSmOidcPlatform = new harness.platform.GcpSecretManagerConnector("gcp_sm_oidc_platform", {
identifier: "identifier",
name: "name",
description: "test",
tags: ["foo:bar"],
executeOnDelegate: false,
oidcAuthentications: [{
workloadPoolId: "harness-pool-test",
providerId: "harness",
gcpProjectId: "1234567",
serviceAccountEmail: "harness.sample@iam.gserviceaccount.com",
}],
});
const gcpSmOidcDelegate = new harness.platform.GcpSecretManagerConnector("gcp_sm_oidc_delegate", {
identifier: "identifier",
name: "name",
description: "test",
tags: ["foo:bar"],
isDefault: true,
delegateSelectors: ["harness-delegate"],
oidcAuthentications: [{
workloadPoolId: "harness-pool-test",
providerId: "harness",
gcpProjectId: "1234567",
serviceAccountEmail: "harness.sample@iam.gserviceaccount.com",
}],
});
import pulumi
import pulumi_harness as harness
gcp_sm_manual = harness.platform.GcpSecretManagerConnector("gcp_sm_manual",
identifier="identifier",
name="name",
description="test",
tags=["foo:bar"],
delegate_selectors=["harness-delegate"],
credentials_ref=f"account.{test['id']}")
gcp_sm_inherit = harness.platform.GcpSecretManagerConnector("gcp_sm_inherit",
identifier="identifier",
name="name",
description="test",
tags=["foo:bar"],
delegate_selectors=["harness-delegate"],
inherit_from_delegate=True)
gcp_sm_oidc_platform = harness.platform.GcpSecretManagerConnector("gcp_sm_oidc_platform",
identifier="identifier",
name="name",
description="test",
tags=["foo:bar"],
execute_on_delegate=False,
oidc_authentications=[{
"workload_pool_id": "harness-pool-test",
"provider_id": "harness",
"gcp_project_id": "1234567",
"service_account_email": "harness.sample@iam.gserviceaccount.com",
}])
gcp_sm_oidc_delegate = harness.platform.GcpSecretManagerConnector("gcp_sm_oidc_delegate",
identifier="identifier",
name="name",
description="test",
tags=["foo:bar"],
is_default=True,
delegate_selectors=["harness-delegate"],
oidc_authentications=[{
"workload_pool_id": "harness-pool-test",
"provider_id": "harness",
"gcp_project_id": "1234567",
"service_account_email": "harness.sample@iam.gserviceaccount.com",
}])
package main
import (
"fmt"
"github.com/pulumi/pulumi-harness/sdk/go/harness/platform"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := platform.NewGcpSecretManagerConnector(ctx, "gcp_sm_manual", &platform.GcpSecretManagerConnectorArgs{
Identifier: pulumi.String("identifier"),
Name: pulumi.String("name"),
Description: pulumi.String("test"),
Tags: pulumi.StringArray{
pulumi.String("foo:bar"),
},
DelegateSelectors: pulumi.StringArray{
pulumi.String("harness-delegate"),
},
CredentialsRef: pulumi.Sprintf("account.%v", test.Id),
})
if err != nil {
return err
}
_, err = platform.NewGcpSecretManagerConnector(ctx, "gcp_sm_inherit", &platform.GcpSecretManagerConnectorArgs{
Identifier: pulumi.String("identifier"),
Name: pulumi.String("name"),
Description: pulumi.String("test"),
Tags: pulumi.StringArray{
pulumi.String("foo:bar"),
},
DelegateSelectors: pulumi.StringArray{
pulumi.String("harness-delegate"),
},
InheritFromDelegate: pulumi.Bool(true),
})
if err != nil {
return err
}
_, err = platform.NewGcpSecretManagerConnector(ctx, "gcp_sm_oidc_platform", &platform.GcpSecretManagerConnectorArgs{
Identifier: pulumi.String("identifier"),
Name: pulumi.String("name"),
Description: pulumi.String("test"),
Tags: pulumi.StringArray{
pulumi.String("foo:bar"),
},
ExecuteOnDelegate: pulumi.Bool(false),
OidcAuthentications: platform.GcpSecretManagerConnectorOidcAuthenticationArray{
&platform.GcpSecretManagerConnectorOidcAuthenticationArgs{
WorkloadPoolId: pulumi.String("harness-pool-test"),
ProviderId: pulumi.String("harness"),
GcpProjectId: pulumi.String("1234567"),
ServiceAccountEmail: pulumi.String("harness.sample@iam.gserviceaccount.com"),
},
},
})
if err != nil {
return err
}
_, err = platform.NewGcpSecretManagerConnector(ctx, "gcp_sm_oidc_delegate", &platform.GcpSecretManagerConnectorArgs{
Identifier: pulumi.String("identifier"),
Name: pulumi.String("name"),
Description: pulumi.String("test"),
Tags: pulumi.StringArray{
pulumi.String("foo:bar"),
},
IsDefault: pulumi.Bool(true),
DelegateSelectors: pulumi.StringArray{
pulumi.String("harness-delegate"),
},
OidcAuthentications: platform.GcpSecretManagerConnectorOidcAuthenticationArray{
&platform.GcpSecretManagerConnectorOidcAuthenticationArgs{
WorkloadPoolId: pulumi.String("harness-pool-test"),
ProviderId: pulumi.String("harness"),
GcpProjectId: pulumi.String("1234567"),
ServiceAccountEmail: pulumi.String("harness.sample@iam.gserviceaccount.com"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Harness = Pulumi.Harness;
return await Deployment.RunAsync(() =>
{
var gcpSmManual = new Harness.Platform.GcpSecretManagerConnector("gcp_sm_manual", new()
{
Identifier = "identifier",
Name = "name",
Description = "test",
Tags = new[]
{
"foo:bar",
},
DelegateSelectors = new[]
{
"harness-delegate",
},
CredentialsRef = $"account.{test.Id}",
});
var gcpSmInherit = new Harness.Platform.GcpSecretManagerConnector("gcp_sm_inherit", new()
{
Identifier = "identifier",
Name = "name",
Description = "test",
Tags = new[]
{
"foo:bar",
},
DelegateSelectors = new[]
{
"harness-delegate",
},
InheritFromDelegate = true,
});
var gcpSmOidcPlatform = new Harness.Platform.GcpSecretManagerConnector("gcp_sm_oidc_platform", new()
{
Identifier = "identifier",
Name = "name",
Description = "test",
Tags = new[]
{
"foo:bar",
},
ExecuteOnDelegate = false,
OidcAuthentications = new[]
{
new Harness.Platform.Inputs.GcpSecretManagerConnectorOidcAuthenticationArgs
{
WorkloadPoolId = "harness-pool-test",
ProviderId = "harness",
GcpProjectId = "1234567",
ServiceAccountEmail = "harness.sample@iam.gserviceaccount.com",
},
},
});
var gcpSmOidcDelegate = new Harness.Platform.GcpSecretManagerConnector("gcp_sm_oidc_delegate", new()
{
Identifier = "identifier",
Name = "name",
Description = "test",
Tags = new[]
{
"foo:bar",
},
IsDefault = true,
DelegateSelectors = new[]
{
"harness-delegate",
},
OidcAuthentications = new[]
{
new Harness.Platform.Inputs.GcpSecretManagerConnectorOidcAuthenticationArgs
{
WorkloadPoolId = "harness-pool-test",
ProviderId = "harness",
GcpProjectId = "1234567",
ServiceAccountEmail = "harness.sample@iam.gserviceaccount.com",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.harness.platform.GcpSecretManagerConnector;
import com.pulumi.harness.platform.GcpSecretManagerConnectorArgs;
import com.pulumi.harness.platform.inputs.GcpSecretManagerConnectorOidcAuthenticationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var gcpSmManual = new GcpSecretManagerConnector("gcpSmManual", GcpSecretManagerConnectorArgs.builder()
.identifier("identifier")
.name("name")
.description("test")
.tags("foo:bar")
.delegateSelectors("harness-delegate")
.credentialsRef(String.format("account.%s", test.id()))
.build());
var gcpSmInherit = new GcpSecretManagerConnector("gcpSmInherit", GcpSecretManagerConnectorArgs.builder()
.identifier("identifier")
.name("name")
.description("test")
.tags("foo:bar")
.delegateSelectors("harness-delegate")
.inheritFromDelegate(true)
.build());
var gcpSmOidcPlatform = new GcpSecretManagerConnector("gcpSmOidcPlatform", GcpSecretManagerConnectorArgs.builder()
.identifier("identifier")
.name("name")
.description("test")
.tags("foo:bar")
.executeOnDelegate(false)
.oidcAuthentications(GcpSecretManagerConnectorOidcAuthenticationArgs.builder()
.workloadPoolId("harness-pool-test")
.providerId("harness")
.gcpProjectId("1234567")
.serviceAccountEmail("harness.sample@iam.gserviceaccount.com")
.build())
.build());
var gcpSmOidcDelegate = new GcpSecretManagerConnector("gcpSmOidcDelegate", GcpSecretManagerConnectorArgs.builder()
.identifier("identifier")
.name("name")
.description("test")
.tags("foo:bar")
.isDefault(true)
.delegateSelectors("harness-delegate")
.oidcAuthentications(GcpSecretManagerConnectorOidcAuthenticationArgs.builder()
.workloadPoolId("harness-pool-test")
.providerId("harness")
.gcpProjectId("1234567")
.serviceAccountEmail("harness.sample@iam.gserviceaccount.com")
.build())
.build());
}
}
resources:
gcpSmManual:
type: harness:platform:GcpSecretManagerConnector
name: gcp_sm_manual
properties:
identifier: identifier
name: name
description: test
tags:
- foo:bar
delegateSelectors:
- harness-delegate
credentialsRef: account.${test.id}
gcpSmInherit:
type: harness:platform:GcpSecretManagerConnector
name: gcp_sm_inherit
properties:
identifier: identifier
name: name
description: test
tags:
- foo:bar
delegateSelectors:
- harness-delegate
inheritFromDelegate: true
gcpSmOidcPlatform:
type: harness:platform:GcpSecretManagerConnector
name: gcp_sm_oidc_platform
properties:
identifier: identifier
name: name
description: test
tags:
- foo:bar
executeOnDelegate: false
oidcAuthentications:
- workloadPoolId: harness-pool-test
providerId: harness
gcpProjectId: '1234567'
serviceAccountEmail: harness.sample@iam.gserviceaccount.com
gcpSmOidcDelegate:
type: harness:platform:GcpSecretManagerConnector
name: gcp_sm_oidc_delegate
properties:
identifier: identifier
name: name
description: test
tags:
- foo:bar
isDefault: true
delegateSelectors:
- harness-delegate
oidcAuthentications:
- workloadPoolId: harness-pool-test
providerId: harness
gcpProjectId: '1234567'
serviceAccountEmail: harness.sample@iam.gserviceaccount.com
Create GcpSecretManagerConnector Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new GcpSecretManagerConnector(name: string, args: GcpSecretManagerConnectorArgs, opts?: CustomResourceOptions);@overload
def GcpSecretManagerConnector(resource_name: str,
args: GcpSecretManagerConnectorArgs,
opts: Optional[ResourceOptions] = None)
@overload
def GcpSecretManagerConnector(resource_name: str,
opts: Optional[ResourceOptions] = None,
identifier: Optional[str] = None,
credentials_ref: Optional[str] = None,
delegate_selectors: Optional[Sequence[str]] = None,
description: Optional[str] = None,
execute_on_delegate: Optional[bool] = None,
inherit_from_delegate: Optional[bool] = None,
is_default: Optional[bool] = None,
name: Optional[str] = None,
oidc_authentications: Optional[Sequence[GcpSecretManagerConnectorOidcAuthenticationArgs]] = None,
org_id: Optional[str] = None,
project_id: Optional[str] = None,
tags: Optional[Sequence[str]] = None)func NewGcpSecretManagerConnector(ctx *Context, name string, args GcpSecretManagerConnectorArgs, opts ...ResourceOption) (*GcpSecretManagerConnector, error)public GcpSecretManagerConnector(string name, GcpSecretManagerConnectorArgs args, CustomResourceOptions? opts = null)public GcpSecretManagerConnector(String name, GcpSecretManagerConnectorArgs args)
public GcpSecretManagerConnector(String name, GcpSecretManagerConnectorArgs args, CustomResourceOptions options)
type: harness:platform:GcpSecretManagerConnector
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name
This property is required. string - The unique name of the resource.
- args
This property is required. GcpSecretManagerConnectorArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name
This property is required. str - The unique name of the resource.
- args
This property is required. GcpSecretManagerConnectorArgs - The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. GcpSecretManagerConnectorArgs - The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. GcpSecretManagerConnectorArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name
This property is required. String - The unique name of the resource.
- args
This property is required. GcpSecretManagerConnectorArgs - The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var gcpSecretManagerConnectorResource = new Harness.Platform.GcpSecretManagerConnector("gcpSecretManagerConnectorResource", new()
{
Identifier = "string",
CredentialsRef = "string",
DelegateSelectors = new[]
{
"string",
},
Description = "string",
ExecuteOnDelegate = false,
InheritFromDelegate = false,
IsDefault = false,
Name = "string",
OidcAuthentications = new[]
{
new Harness.Platform.Inputs.GcpSecretManagerConnectorOidcAuthenticationArgs
{
GcpProjectId = "string",
ProviderId = "string",
ServiceAccountEmail = "string",
WorkloadPoolId = "string",
},
},
OrgId = "string",
ProjectId = "string",
Tags = new[]
{
"string",
},
});
example, err := platform.NewGcpSecretManagerConnector(ctx, "gcpSecretManagerConnectorResource", &platform.GcpSecretManagerConnectorArgs{
Identifier: pulumi.String("string"),
CredentialsRef: pulumi.String("string"),
DelegateSelectors: pulumi.StringArray{
pulumi.String("string"),
},
Description: pulumi.String("string"),
ExecuteOnDelegate: pulumi.Bool(false),
InheritFromDelegate: pulumi.Bool(false),
IsDefault: pulumi.Bool(false),
Name: pulumi.String("string"),
OidcAuthentications: platform.GcpSecretManagerConnectorOidcAuthenticationArray{
&platform.GcpSecretManagerConnectorOidcAuthenticationArgs{
GcpProjectId: pulumi.String("string"),
ProviderId: pulumi.String("string"),
ServiceAccountEmail: pulumi.String("string"),
WorkloadPoolId: pulumi.String("string"),
},
},
OrgId: pulumi.String("string"),
ProjectId: pulumi.String("string"),
Tags: pulumi.StringArray{
pulumi.String("string"),
},
})
var gcpSecretManagerConnectorResource = new GcpSecretManagerConnector("gcpSecretManagerConnectorResource", GcpSecretManagerConnectorArgs.builder()
.identifier("string")
.credentialsRef("string")
.delegateSelectors("string")
.description("string")
.executeOnDelegate(false)
.inheritFromDelegate(false)
.isDefault(false)
.name("string")
.oidcAuthentications(GcpSecretManagerConnectorOidcAuthenticationArgs.builder()
.gcpProjectId("string")
.providerId("string")
.serviceAccountEmail("string")
.workloadPoolId("string")
.build())
.orgId("string")
.projectId("string")
.tags("string")
.build());
gcp_secret_manager_connector_resource = harness.platform.GcpSecretManagerConnector("gcpSecretManagerConnectorResource",
identifier="string",
credentials_ref="string",
delegate_selectors=["string"],
description="string",
execute_on_delegate=False,
inherit_from_delegate=False,
is_default=False,
name="string",
oidc_authentications=[{
"gcp_project_id": "string",
"provider_id": "string",
"service_account_email": "string",
"workload_pool_id": "string",
}],
org_id="string",
project_id="string",
tags=["string"])
const gcpSecretManagerConnectorResource = new harness.platform.GcpSecretManagerConnector("gcpSecretManagerConnectorResource", {
identifier: "string",
credentialsRef: "string",
delegateSelectors: ["string"],
description: "string",
executeOnDelegate: false,
inheritFromDelegate: false,
isDefault: false,
name: "string",
oidcAuthentications: [{
gcpProjectId: "string",
providerId: "string",
serviceAccountEmail: "string",
workloadPoolId: "string",
}],
orgId: "string",
projectId: "string",
tags: ["string"],
});
type: harness:platform:GcpSecretManagerConnector
properties:
credentialsRef: string
delegateSelectors:
- string
description: string
executeOnDelegate: false
identifier: string
inheritFromDelegate: false
isDefault: false
name: string
oidcAuthentications:
- gcpProjectId: string
providerId: string
serviceAccountEmail: string
workloadPoolId: string
orgId: string
projectId: string
tags:
- string
GcpSecretManagerConnector Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The GcpSecretManagerConnector resource accepts the following input properties:
- Identifier
string
This property is required. 
Changes to this property will trigger replacement. - Unique identifier of the resource.
- Credentials
Ref string - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Delegate
Selectors List<string> - The delegates to inherit the credentials from.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Execute on delegate or not.
- Inherit
From boolDelegate - Inherit configuration from delegate.
- Is
Default bool - Set this flag to set this secret manager as default secret manager.
- Name string
- Name of the resource.
- Oidc
Authentications List<GcpSecret Manager Connector Oidc Authentication> - Authentication using harness oidc.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- List<string>
- Tags to associate with the resource.
- Identifier
string
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- Credentials
Ref string - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Delegate
Selectors []string - The delegates to inherit the credentials from.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Execute on delegate or not.
- Inherit
From boolDelegate - Inherit configuration from delegate.
- Is
Default bool - Set this flag to set this secret manager as default secret manager.
- Name string
- Name of the resource.
- Oidc
Authentications []GcpSecret Manager Connector Oidc Authentication Args - Authentication using harness oidc.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- []string
- Tags to associate with the resource.
- identifier
String
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- credentials
Ref String - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate
Selectors List<String> - The delegates to inherit the credentials from.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Execute on delegate or not.
- inherit
From BooleanDelegate - Inherit configuration from delegate.
- is
Default Boolean - Set this flag to set this secret manager as default secret manager.
- name String
- Name of the resource.
- oidc
Authentications List<GcpSecret Manager Connector Oidc Authentication> - Authentication using harness oidc.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- List<String>
- Tags to associate with the resource.
- identifier
string
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- credentials
Ref string - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate
Selectors string[] - The delegates to inherit the credentials from.
- description string
- Description of the resource.
- execute
On booleanDelegate - Execute on delegate or not.
- inherit
From booleanDelegate - Inherit configuration from delegate.
- is
Default boolean - Set this flag to set this secret manager as default secret manager.
- name string
- Name of the resource.
- oidc
Authentications GcpSecret Manager Connector Oidc Authentication[] - Authentication using harness oidc.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- string[]
- Tags to associate with the resource.
- identifier
str
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- credentials_
ref str - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate_
selectors Sequence[str] - The delegates to inherit the credentials from.
- description str
- Description of the resource.
- execute_
on_ booldelegate - Execute on delegate or not.
- inherit_
from_ booldelegate - Inherit configuration from delegate.
- is_
default bool - Set this flag to set this secret manager as default secret manager.
- name str
- Name of the resource.
- oidc_
authentications Sequence[GcpSecret Manager Connector Oidc Authentication Args] - Authentication using harness oidc.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- Sequence[str]
- Tags to associate with the resource.
- identifier
String
This property is required. Changes to this property will trigger replacement. - Unique identifier of the resource.
- credentials
Ref String - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate
Selectors List<String> - The delegates to inherit the credentials from.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Execute on delegate or not.
- inherit
From BooleanDelegate - Inherit configuration from delegate.
- is
Default Boolean - Set this flag to set this secret manager as default secret manager.
- name String
- Name of the resource.
- oidc
Authentications List<Property Map> - Authentication using harness oidc.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- List<String>
- Tags to associate with the resource.
Outputs
All input properties are implicitly available as output properties. Additionally, the GcpSecretManagerConnector resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing GcpSecretManagerConnector Resource
Get an existing GcpSecretManagerConnector resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: GcpSecretManagerConnectorState, opts?: CustomResourceOptions): GcpSecretManagerConnector@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
credentials_ref: Optional[str] = None,
delegate_selectors: Optional[Sequence[str]] = None,
description: Optional[str] = None,
execute_on_delegate: Optional[bool] = None,
identifier: Optional[str] = None,
inherit_from_delegate: Optional[bool] = None,
is_default: Optional[bool] = None,
name: Optional[str] = None,
oidc_authentications: Optional[Sequence[GcpSecretManagerConnectorOidcAuthenticationArgs]] = None,
org_id: Optional[str] = None,
project_id: Optional[str] = None,
tags: Optional[Sequence[str]] = None) -> GcpSecretManagerConnectorfunc GetGcpSecretManagerConnector(ctx *Context, name string, id IDInput, state *GcpSecretManagerConnectorState, opts ...ResourceOption) (*GcpSecretManagerConnector, error)public static GcpSecretManagerConnector Get(string name, Input<string> id, GcpSecretManagerConnectorState? state, CustomResourceOptions? opts = null)public static GcpSecretManagerConnector get(String name, Output<String> id, GcpSecretManagerConnectorState state, CustomResourceOptions options)resources: _: type: harness:platform:GcpSecretManagerConnector get: id: ${id}- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
This property is required. - The unique name of the resulting resource.
- id
This property is required. - The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
The following state arguments are supported:
- Credentials
Ref string - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Delegate
Selectors List<string> - The delegates to inherit the credentials from.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Execute on delegate or not.
- Identifier
- Unique identifier of the resource.
- Inherit
From boolDelegate - Inherit configuration from delegate.
- Is
Default bool - Set this flag to set this secret manager as default secret manager.
- Name string
- Name of the resource.
- Oidc
Authentications List<GcpSecret Manager Connector Oidc Authentication> - Authentication using harness oidc.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- List<string>
- Tags to associate with the resource.
- Credentials
Ref string - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- Delegate
Selectors []string - The delegates to inherit the credentials from.
- Description string
- Description of the resource.
- Execute
On boolDelegate - Execute on delegate or not.
- Identifier
- Unique identifier of the resource.
- Inherit
From boolDelegate - Inherit configuration from delegate.
- Is
Default bool - Set this flag to set this secret manager as default secret manager.
- Name string
- Name of the resource.
- Oidc
Authentications []GcpSecret Manager Connector Oidc Authentication Args - Authentication using harness oidc.
- Org
Id string - Unique identifier of the organization.
- Project
Id string - Unique identifier of the project.
- []string
- Tags to associate with the resource.
- credentials
Ref String - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate
Selectors List<String> - The delegates to inherit the credentials from.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Execute on delegate or not.
- identifier
- Unique identifier of the resource.
- inherit
From BooleanDelegate - Inherit configuration from delegate.
- is
Default Boolean - Set this flag to set this secret manager as default secret manager.
- name String
- Name of the resource.
- oidc
Authentications List<GcpSecret Manager Connector Oidc Authentication> - Authentication using harness oidc.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- List<String>
- Tags to associate with the resource.
- credentials
Ref string - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate
Selectors string[] - The delegates to inherit the credentials from.
- description string
- Description of the resource.
- execute
On booleanDelegate - Execute on delegate or not.
- identifier
- Unique identifier of the resource.
- inherit
From booleanDelegate - Inherit configuration from delegate.
- is
Default boolean - Set this flag to set this secret manager as default secret manager.
- name string
- Name of the resource.
- oidc
Authentications GcpSecret Manager Connector Oidc Authentication[] - Authentication using harness oidc.
- org
Id string - Unique identifier of the organization.
- project
Id string - Unique identifier of the project.
- string[]
- Tags to associate with the resource.
- credentials_
ref str - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate_
selectors Sequence[str] - The delegates to inherit the credentials from.
- description str
- Description of the resource.
- execute_
on_ booldelegate - Execute on delegate or not.
- identifier
- Unique identifier of the resource.
- inherit_
from_ booldelegate - Inherit configuration from delegate.
- is_
default bool - Set this flag to set this secret manager as default secret manager.
- name str
- Name of the resource.
- oidc_
authentications Sequence[GcpSecret Manager Connector Oidc Authentication Args] - Authentication using harness oidc.
- org_
id str - Unique identifier of the organization.
- project_
id str - Unique identifier of the project.
- Sequence[str]
- Tags to associate with the resource.
- credentials
Ref String - Reference to the secret containing credentials of IAM service account for Google Secret Manager. To reference a secret at the organization scope, prefix 'org' to the expression: org.{identifier}. To reference a secret at the account scope, prefix 'account` to the expression: account.{identifier}.
- delegate
Selectors List<String> - The delegates to inherit the credentials from.
- description String
- Description of the resource.
- execute
On BooleanDelegate - Execute on delegate or not.
- identifier
- Unique identifier of the resource.
- inherit
From BooleanDelegate - Inherit configuration from delegate.
- is
Default Boolean - Set this flag to set this secret manager as default secret manager.
- name String
- Name of the resource.
- oidc
Authentications List<Property Map> - Authentication using harness oidc.
- org
Id String - Unique identifier of the organization.
- project
Id String - Unique identifier of the project.
- List<String>
- Tags to associate with the resource.
Supporting Types
GcpSecretManagerConnectorOidcAuthentication, GcpSecretManagerConnectorOidcAuthenticationArgs
, GcpSecretManagerConnectorOidcAuthenticationArgs
- Gcp
Project Id This property is required. string - The project number of the GCP project that is used to create the workload identity.
- Provider
Id This property is required. string - The OIDC provider ID value configured in GCP.
- Service
Account Email This property is required. string - The service account linked to workload identity pool while setting GCP workload identity provider.
- Workload
Pool Id This property is required. string - The workload pool ID value created in GCP.
- Gcp
Project Id This property is required. string - The project number of the GCP project that is used to create the workload identity.
- Provider
Id This property is required. string - The OIDC provider ID value configured in GCP.
- Service
Account Email This property is required. string - The service account linked to workload identity pool while setting GCP workload identity provider.
- Workload
Pool Id This property is required. string - The workload pool ID value created in GCP.
- gcp
Project Id This property is required. String - The project number of the GCP project that is used to create the workload identity.
- provider
Id This property is required. String - The OIDC provider ID value configured in GCP.
- service
Account Email This property is required. String - The service account linked to workload identity pool while setting GCP workload identity provider.
- workload
Pool Id This property is required. String - The workload pool ID value created in GCP.
- gcp
Project Id This property is required. string - The project number of the GCP project that is used to create the workload identity.
- provider
Id This property is required. string - The OIDC provider ID value configured in GCP.
- service
Account Email This property is required. string - The service account linked to workload identity pool while setting GCP workload identity provider.
- workload
Pool Id This property is required. string - The workload pool ID value created in GCP.
- gcp_
project_ id This property is required. str - The project number of the GCP project that is used to create the workload identity.
- provider_
id This property is required. str - The OIDC provider ID value configured in GCP.
- service_
account_ email This property is required. str - The service account linked to workload identity pool while setting GCP workload identity provider.
- workload_
pool_ id This property is required. str - The workload pool ID value created in GCP.
- gcp
Project Id This property is required. String - The project number of the GCP project that is used to create the workload identity.
- provider
Id This property is required. String - The OIDC provider ID value configured in GCP.
- service
Account Email This property is required. String - The service account linked to workload identity pool while setting GCP workload identity provider.
- workload
Pool Id This property is required. String - The workload pool ID value created in GCP.
Import
Import account level gcp secret manager connector
$ pulumi import harness:platform/gcpSecretManagerConnector:GcpSecretManagerConnector example <connector_id>
Import org level gcp secret manager connector
$ pulumi import harness:platform/gcpSecretManagerConnector:GcpSecretManagerConnector example <ord_id>/<connector_id>
Import project level gcp secret manager connector
$ pulumi import harness:platform/gcpSecretManagerConnector:GcpSecretManagerConnector example <org_id>/<project_id>/<connector_id>
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- harness pulumi/pulumi-harness
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
harnessTerraform Provider.