This product is not supported for your selected Datadog site. ().

gcp_secretmanager_secret_version

ancestors

Type: UNORDERED_LIST_STRING

client_specified_payload_checksum

Type: BOOLEAN
Provider name: clientSpecifiedPayloadChecksum
Description: Output only. True if payload checksum specified in SecretPayload object has been received by SecretManagerService on SecretManagerService.AddSecretVersion.

create_time

Type: TIMESTAMP
Provider name: createTime
Description: Output only. The time at which the SecretVersion was created.

customer_managed_encryption

Type: STRUCT
Provider name: customerManagedEncryption
Description: Output only. The customer-managed encryption status of the SecretVersion. Only populated if customer-managed encryption is used and Secret is a regionalized secret.

  • kms_key_version_name
    Type: STRING
    Provider name: kmsKeyVersionName
    Description: Required. The resource name of the Cloud KMS CryptoKeyVersion used to encrypt the secret payload, in the following format: projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*.

destroy_time

Type: TIMESTAMP
Provider name: destroyTime
Description: Output only. The time this SecretVersion was destroyed. Only present if state is DESTROYED.

etag

Type: STRING
Provider name: etag
Description: Output only. Etag of the currently stored SecretVersion.

labels

Type: UNORDERED_LIST_STRING

name

Type: STRING
Provider name: name
Description: Output only. The resource name of the SecretVersion in the format projects/*/secrets/*/versions/*. SecretVersion IDs in a Secret start at 1 and are incremented for each subsequent version of the secret.

organization_id

Type: STRING

parent

Type: STRING

project_id

Type: STRING

project_number

Type: STRING

replication_status

Type: STRUCT
Provider name: replicationStatus
Description: The replication status of the SecretVersion.

  • automatic
    Type: STRUCT
    Provider name: automatic
    Description: Describes the replication status of a SecretVersion with automatic replication. Only populated if the parent Secret has an automatic replication policy.
    • customer_managed_encryption
      Type: STRUCT
      Provider name: customerManagedEncryption
      Description: Output only. The customer-managed encryption status of the SecretVersion. Only populated if customer-managed encryption is used.
      • kms_key_version_name
        Type: STRING
        Provider name: kmsKeyVersionName
        Description: Required. The resource name of the Cloud KMS CryptoKeyVersion used to encrypt the secret payload, in the following format: projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*.
  • user_managed
    Type: STRUCT
    Provider name: userManaged
    Description: Describes the replication status of a SecretVersion with user-managed replication. Only populated if the parent Secret has a user-managed replication policy.
    • replicas
      Type: UNORDERED_LIST_STRUCT
      Provider name: replicas
      Description: Output only. The list of replica statuses for the SecretVersion.
      • customer_managed_encryption
        Type: STRUCT
        Provider name: customerManagedEncryption
        Description: Output only. The customer-managed encryption status of the SecretVersion. Only populated if customer-managed encryption is used.
        • kms_key_version_name
          Type: STRING
          Provider name: kmsKeyVersionName
          Description: Required. The resource name of the Cloud KMS CryptoKeyVersion used to encrypt the secret payload, in the following format: projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*.
      • location
        Type: STRING
        Provider name: location
        Description: Output only. The canonical ID of the replica location. For example: "us-east1".

resource_name

Type: STRING

scheduled_destroy_time

Type: TIMESTAMP
Provider name: scheduledDestroyTime
Description: Optional. Output only. Scheduled destroy time for secret version. This is a part of the Delayed secret version destroy feature. For a Secret with a valid version destroy TTL, when a secert version is destroyed, version is moved to disabled state and it is scheduled for destruction Version is destroyed only after the scheduled_destroy_time.

state

Type: STRING
Provider name: state
Description: Output only. The current state of the SecretVersion.
Possible values:

  • STATE_UNSPECIFIED - Not specified. This value is unused and invalid.
  • ENABLED - The SecretVersion may be accessed.
  • DISABLED - The SecretVersion may not be accessed, but the secret data is still available and can be placed back into the ENABLED state.
  • DESTROYED - The SecretVersion is destroyed and the secret data is no longer stored. A version may not leave this state once entered.

tags

Type: UNORDERED_LIST_STRING