Reputation: 630
Google Cloud Secret Manager - Notifications on PubSub
I'm trying to configure Google Secret Manager in order to get notifications on PubSub (following this guide).
Is it possible to configure notifications on service level and not only on secret level?
I want to receive notifications on every secret of the project, without the need to explicitly to link a secret to the topic.
Thanks everyone!
Upvotes: 0
Views: 387
Answers (2)
Reputation: 1
We can setup a notifications without creating a secret with particular topics. We can make use of audit logs by creating a logs routing sink. console.cloud.google.com/logs/router/, create a log routing sink with sink name, description and destination - (where your destination will be "cloud pub/sub topic"). In this way, notifications will be received upon any secret updates.
Upvotes: 0
Reputation: 75775
It's not possible to configure a secret update notification at service level. Only the secret level is allowed.
However, in that case, I recommend to script the creation, or to use IaC solution, such as terraform, to automate the creation and the addition of the new secret notification to the existing topic.
To prevent manual creation, you can also remove the role to the users to force them to use your automated creation procedure.
Upvotes: 1
Related Questions
- Create notifications when GCP secret nears expiry
- GMB MyBusiness API - How to set up real-time PubSub notifications?
- GCP Billing Alert with Pubsub and Slack - I get a message every 30 minutes
- Google PubSub - add message on scheduling
- gcloud pubsub subscriptions pull often report empty message list
- REST API for monitoring undelivered message in google cloud pubsub
- Google Business Api - Pub Sub update notification settings
- Can't see Google Pub/Sub Push Notifications on my endpoint
- Pub/Sub notification for GCS - event filter doesn't work
- Google PubSub and GCM