Lockbox API, REST: Secret methods
A set of methods for managing secrets.
JSON Representation
{
"id": "string",
"folderId": "string",
"createdAt": "string",
"name": "string",
"description": "string",
"labels": "object",
"kmsKeyId": "string",
"status": "string",
"currentVersion": {
"id": "string",
"secretId": "string",
"createdAt": "string",
"destroyAt": "string",
"description": "string",
"status": "string",
"payloadEntryKeys": [
"string"
],
"passwordPayloadSpecification": {
"passwordKey": "string",
"length": "string",
"includeUppercase": true,
"includeLowercase": true,
"includeDigits": true,
"includePunctuation": true,
"includedPunctuation": "string",
"excludedPunctuation": "string"
}
},
"deletionProtection": true,
"passwordPayloadSpecification": {
"passwordKey": "string",
"length": "string",
"includeUppercase": true,
"includeLowercase": true,
"includeDigits": true,
"includePunctuation": true,
"includedPunctuation": "string",
"excludedPunctuation": "string"
}
}
Field | Description |
---|---|
id | string ID of the secret. |
folderId | string ID of the folder that the secret belongs to. |
createdAt | string (date-time) Creation timestamp. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the Protocol Buffers reference. In some languages, built-in datetime utilities do not support nanosecond precision (9 digits). |
name | string Name of the secret. |
description | string Description of the secret. |
labels | object Custom labels for the secret as |
kmsKeyId | string Optional ID of the KMS key will be used to encrypt and decrypt the secret. |
status | string Status of the secret.
|
currentVersion | object Current (i.e. the latest ) version of the secret. |
currentVersion. id |
string ID of the version. |
currentVersion. secretId |
string ID of the secret that the version belongs to. |
currentVersion. createdAt |
string (date-time) Time when the version was created. String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the Protocol Buffers reference. In some languages, built-in datetime utilities do not support nanosecond precision (9 digits). |
currentVersion. destroyAt |
string (date-time) Time when the version is going to be destroyed. Empty unless the status is String in RFC3339 text format. The range of possible values is from To work with values in this field, use the APIs described in the Protocol Buffers reference. In some languages, built-in datetime utilities do not support nanosecond precision (9 digits). |
currentVersion. description |
string Description of the version. |
currentVersion. status |
string Status of the secret.
|
currentVersion. payloadEntryKeys[] |
string Keys of the entries contained in the version payload. |
currentVersion. passwordPayloadSpecification |
object |
currentVersion. passwordPayloadSpecification. passwordKey |
string Required. key of the entry to store generated password value The maximum string length in characters is 256. Value must match the regular expression |
currentVersion. passwordPayloadSpecification. length |
string (int64) password length; by default, a reasonable length will be decided The maximum value is 256. |
currentVersion. passwordPayloadSpecification. includeUppercase |
boolean (boolean) whether at least one A..Z character is included in the password, true by default |
currentVersion. passwordPayloadSpecification. includeLowercase |
boolean (boolean) whether at least one a..z character is included in the password, true by default |
currentVersion. passwordPayloadSpecification. includeDigits |
boolean (boolean) whether at least one 0..9 character is included in the password, true by default |
currentVersion. passwordPayloadSpecification. includePunctuation |
boolean (boolean) whether at least one punctuation character is included in the password, true by default punctuation characters by default (there are 32): !"#$%&'()*+,-./:;<=>?@[]^_`{|}~ to customize the punctuation characters, see included_punctuation and excluded_punctuation below |
currentVersion. passwordPayloadSpecification. includedPunctuation |
string If include_punctuation is true, one of these two fields (not both) may be used optionally to customize the punctuation: a string of specific punctuation characters to use (at most, all the 32) The maximum string length in characters is 32. |
currentVersion. passwordPayloadSpecification. excludedPunctuation |
string a string of punctuation characters to exclude from the default (at most 31, it's not allowed to exclude all the 32) The maximum string length in characters is 31. |
deletionProtection | boolean (boolean) Flag that inhibits deletion of the secret. |
passwordPayloadSpecification | object |
passwordPayloadSpecification. passwordKey |
string Required. key of the entry to store generated password value The maximum string length in characters is 256. Value must match the regular expression |
passwordPayloadSpecification. length |
string (int64) password length; by default, a reasonable length will be decided The maximum value is 256. |
passwordPayloadSpecification. includeUppercase |
boolean (boolean) whether at least one A..Z character is included in the password, true by default |
passwordPayloadSpecification. includeLowercase |
boolean (boolean) whether at least one a..z character is included in the password, true by default |
passwordPayloadSpecification. includeDigits |
boolean (boolean) whether at least one 0..9 character is included in the password, true by default |
passwordPayloadSpecification. includePunctuation |
boolean (boolean) whether at least one punctuation character is included in the password, true by default punctuation characters by default (there are 32): !"#$%&'()*+,-./:;<=>?@[]^_`{|}~ to customize the punctuation characters, see included_punctuation and excluded_punctuation below |
passwordPayloadSpecification. includedPunctuation |
string If include_punctuation is true, one of these two fields (not both) may be used optionally to customize the punctuation: a string of specific punctuation characters to use (at most, all the 32) The maximum string length in characters is 32. |
passwordPayloadSpecification. excludedPunctuation |
string a string of punctuation characters to exclude from the default (at most 31, it's not allowed to exclude all the 32) The maximum string length in characters is 31. |
Methods
Method | Description |
---|---|
activate | Activates the specified secret. |
addVersion | Adds new version based on a previous one. |
cancelVersionDestruction | Cancels previously scheduled version destruction, if the version hasn't been destroyed yet. |
create | Creates a secret in the specified folder. |
deactivate | Deactivates the specified secret. |
delete | Deletes the specified secret. |
get | Returns the specified secret. |
list | Retrieves the list of secrets in the specified folder. |
listAccessBindings | Lists existing access bindings for the specified secret. |
listOperations | Lists operations for the specified secret. |
listVersions | Retrieves the list of versions of the specified secret. |
scheduleVersionDestruction | Schedules the specified version for destruction. |
setAccessBindings | Sets access bindings for the secret. |
update | Updates the specified secret. |
updateAccessBindings | Updates access bindings for the secret. |