How can we improve Google Cloud Platform?

← Google Cloud Platform

Add a parameter/metadata store to KMS

To securely store configuration using GCP tools, one needs to


  1. Store them in a file

  2. Encrypt that with KMS

  3. Store that file in GCS

  4. At runtime download that file

  5. Decrypt it

It would be great if there was a way to store small secrets directly in KMS so that we don't need to go through the intermediate step of GCS ourselves.

53 votes
Vote

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
You have left! (?) (thinking…)
Daniel Compton shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

6 comments

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Anonymous commented  ·   ·  Flag as inappropriate

    Any news on this request? A key value store that can store encrypted/unencrypted values would be super helpful for automating projects/networks/clusters from scratch - Storing state (eg Terraform) is painful.. and deployment manager isn't up to scratch.

    AWS have SSM Param store and their CloudFormation service is epic - GCP needs this!

  • Anonymous commented  ·   ·  Flag as inappropriate

    Has there been any progress on this yet please? Is there anything you need from the community to help make this happen?

  • Pavel Lechev commented  ·   ·  Flag as inappropriate

    Has there been any progress with this?
    AWS offers a System Manager with Parameter Store where scalars can be stored as plain text or encrypted and can be made available directly to the EC2 at runtime.
    Surprisingly, GCP does not appear to have similar facility.
    Thanks
    Pav

Google Cloud Platform: Feature Request

Categories

Feedback and Knowledge Base

(thinking…)