How can we improve Google Cloud Platform?

Add a parameter/metadata store to KMS

To securely store configuration using GCP tools, one needs to

1. Store them in a file
2. Encrypt that with KMS
3. Store that file in GCS
4. At runtime download that file
5. Decrypt it

It would be great if there was a way to store small secrets directly in KMS so that we don't need to go through the intermediate step of GCS ourselves.

16 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Daniel Compton shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    1 comment

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Pavel Lechev commented  ·   ·  Flag as inappropriate

        Has there been any progress with this?
        AWS offers a System Manager with Parameter Store where scalars can be stored as plain text or encrypted and can be made available directly to the EC2 at runtime.
        Surprisingly, GCP does not appear to have similar facility.
        Thanks
        Pav

      Feedback and Knowledge Base