How to load secret in file for cloud run?

gautam8404 · December 12, 2023, 12:27pm

--update-secrets=SECRET_KEY=secret-key:latest,/shhh/sa.json=secret-key:latest

this flag loads secret-key in SECRET_KEY env var and writes a /shhh/sa.json file with it in gcloud cloud run

any idea how to do equivalent in terraform?

one thing i could think of is using volumes

...
    volumes {
      name = "secret-volume"
      secret {
        secret = data.google_secret_manager_secret_version_access.secret_key.secret
      }
    }

...

...

containers {

...

      volume_mounts {
        mount_path = "/shhh/secret.json"
        name       = "secret-volume"
      }

...
}

but i don’t know how it saves, will it save secret in given file path?

Topic		Replies	Views
Using secrets with cloud functions Terraform	1	2582	February 14, 2022
Terraform IAM secret key decode AWS	0	304	September 16, 2022
Is there any way to load secret credentails from .env instead of .tfvars file? Terraform	3	35	February 7, 2025
Add key-value to EXISTING secret with terraform Terraform Providers vault	3	1393	February 28, 2023
How to set secret reference using google_cloudfunctions_function Terraform hcp-terraform	1	766	January 10, 2022

How to load secret in file for cloud run?

Related topics