Database Credentials

Several ways to provide database credential are supported.

Raw

Database credentials can be provided as raw unencrypted values:

{
  "type": "raw",
  "value": "${SOURCE_PASSWORD}"
}

Where:

• type: password provider type

• value: raw password value

Google Secret Manager

Database credentials can be requested from Google Secret Manager:

{
  "type": "gcp",
  "project": "${GCP_PROJECT_ID}",
  "secret": "${SECRET_ID}",
  "version": "${VERSION_ID}"
}

Where:

• type: password provider type

• project: GCP project ID

• secret: Secret Manager secret ID

• version: (optional, default – latest) Secret Manager secret version ID

Note

SECRETS.GCP.SECRET.MANAGER.ENABLED property should be enabled, see application properties