yc lockbox secret create
Written by
Updated at November 2, 2024
Create a secret
Command Usage
Syntax:
yc lockbox secret create [Flags...] [Global Flags...]
Flags
Flag | Description |
---|---|
--name |
string Secret name. |
--description |
string Secret description. |
--labels |
key=value[,key=value...] A list of label KEY=VALUE pairs to add. For example, to add two labels named 'foo' and 'bar', both with the value 'baz', use '--labels foo=baz,bar=baz'. |
--kms-key-id |
string KMS key ID will be used to encrypt the secret payload. |
--version-description |
string Description of the first version. |
--payload |
string YAML or JSON array defining the entries of the secret payload. Each item of the array must match the format: https://yandex.cloud/ru/docs/lockbox/api-ref/grpc/secret_service#PayloadEntryChange For instance, the following payload JSON defines a payload containing two text value entries: [{"key": "username", "text_value": "alice"}, {"key": "password", "text_value": "p@$$w0rd"}] Use - value to pass payload string via stdin. |
--deletion-protection |
Enable deletion protection for the secret. |
--async |
Display information about the operation in progress, without waiting for the operation to complete. |
Global Flags
Flag | Description |
---|---|
--profile |
string Set the custom configuration file. |
--debug |
Debug logging. |
--debug-grpc |
Debug gRPC logging. Very verbose, used for debugging connection problems. |
--no-user-output |
Disable printing user intended output to stderr. |
--retry |
int Enable gRPC retries. By default, retries are enabled with maximum 5 attempts. Pass 0 to disable retries. Pass any negative value for infinite retries. Even infinite retries are capped with 2 minutes timeout. |
--cloud-id |
string Set the ID of the cloud to use. |
--folder-id |
string Set the ID of the folder to use. |
--folder-name |
string Set the name of the folder to use (will be resolved to id). |
--endpoint |
string Set the Cloud API endpoint (host:port). |
--token |
string Set the OAuth token to use. |
--impersonate-service-account-id |
string Set the ID of the service account to impersonate. |
--no-browser |
Disable opening browser for authentication. |
--format |
string Set the output format: text (default), yaml, json, json-rest. |
--jq |
string Query to select values from the response using jq syntax |
-h ,--help |
Display help for the command. |