Lockbox API, REST: Secret.Create
Creates a secret in the specified folder.
HTTP request
POST https://lockbox.api.cloud.yandex.net/lockbox/v1/secrets
Body parameters
{
// Includes only one of the fields `passwordPayloadSpecification`
"passwordPayloadSpecification": {
"passwordKey": "string",
"length": "string",
"includeUppercase": "boolean",
"includeLowercase": "boolean",
"includeDigits": "boolean",
"includePunctuation": "boolean",
"includedPunctuation": "string",
"excludedPunctuation": "string"
},
// end of the list of possible fields
"folderId": "string",
"name": "string",
"description": "string",
"labels": "object",
"kmsKeyId": "string",
"versionDescription": "string",
"versionPayloadEntries": [
{
// Includes only one of the fields `textValue`, `binaryValue`
"textValue": "string",
"binaryValue": "string",
// end of the list of possible fields
"key": "string"
}
],
"deletionProtection": "boolean",
"createVersion": "boolean"
}
|
Field |
Description |
|
passwordPayloadSpecification |
Includes only one of the fields |
|
folderId |
string Required field. ID of the folder to create a secret in. The maximum string length in characters is 50. |
|
name |
string Name of the secret. The maximum string length in characters is 100. |
|
description |
string Description of the secret. The maximum string length in characters is 1024. |
|
labels |
object (map<string, string>) Custom labels for the secret as The maximum string length in characters for each value is 63. The maximum string length in characters for each key is 63. Each key must match the regular expression |
|
kmsKeyId |
string Optional ID of the KMS key will be used to encrypt and decrypt the secret. The maximum string length in characters is 50. |
|
versionDescription |
string Description of the first version. The maximum string length in characters is 256. |
|
versionPayloadEntries[] |
Payload entries added to the first version. |
|
deletionProtection |
boolean Flag that inhibits deletion of the secret. |
|
createVersion |
boolean If true: a version will be created with either version_payload_entries or password_payload_specification (one is required). |
PasswordPayloadSpecification
|
Field |
Description |
|
passwordKey |
string Required field. key of the entry to store generated password value Value must match the regular expression |
|
length |
string (int64) password length; by default, a reasonable length will be decided The maximum value is 256. |
|
includeUppercase |
boolean whether at least one A..Z character is included in the password, true by default |
|
includeLowercase |
boolean whether at least one a..z character is included in the password, true by default |
|
includeDigits |
boolean whether at least one 0..9 character is included in the password, true by default |
|
includePunctuation |
boolean whether at least one punctuation character is included in the password, true by default |
|
includedPunctuation |
string If include_punctuation is true, one of these two fields (not both) may be used optionally to customize the punctuation: |
|
excludedPunctuation |
string a string of punctuation characters to exclude from the default (at most 31, it's not allowed to exclude all the 32) |
PayloadEntryChange
|
Field |
Description |
|
textValue |
string Use the field to set a text value. The maximum string length in characters is 65536. Includes only one of the fields Confidential value of the entry. |
|
binaryValue |
string (bytes) Use the field to set a binary value. The maximum string length in characters is 65536. Includes only one of the fields Confidential value of the entry. |
|
key |
string Required field. Non-confidential key of the entry. The maximum string length in characters is 256. Value must match the regular expression |
Response
HTTP Code: 200 - OK
{
"id": "string",
"description": "string",
"createdAt": "string",
"createdBy": "string",
"modifiedAt": "string",
"done": "boolean",
"metadata": "object",
// Includes only one of the fields `error`, `response`
"error": {
"code": "integer",
"message": "string",
"details": [
"object"
]
},
"response": "object"
// end of the list of possible fields
}
An Operation resource. For more information, see Operation.
|
Field |
Description |
|
id |
string ID of the operation. |
|
description |
string Description of the operation. 0-256 characters long. |
|
createdAt |
string (date-time) Creation timestamp. String in RFC3339 To work with values in this field, use the APIs described in the |
|
createdBy |
string ID of the user or service account who initiated the operation. |
|
modifiedAt |
string (date-time) The time when the Operation resource was last modified. String in RFC3339 To work with values in this field, use the APIs described in the |
|
done |
boolean If the value is |
|
metadata |
object Service-specific metadata associated with the operation. |
|
error |
The error result of the operation in case of failure or cancellation. Includes only one of the fields The operation result. |
|
response |
object The normal response of the operation in case of success. Includes only one of the fields The operation result. |
Status
The error result of the operation in case of failure or cancellation.
|
Field |
Description |
|
code |
integer (int32) Error code. An enum value of google.rpc.Code |
|
message |
string An error message. |
|
details[] |
object A list of messages that carry the error details. |