gcloud edge-cache keysets create - create an EdgeCacheKeyset resource
gcloud edge-cache keysets create (KEYSET : --location=LOCATION) [--async] [--description=DESCRIPTION] [--labels=KEY=VALUE] [--public-key=PUBLIC_KEY] [--validation-shared-key=VALIDATION_SHARED_KEY] [GCLOUD_WIDE_FLAG ...]
Create a new EdgeCacheKeyset resource.
To create an EdgeCacheKeyset resource called 'my-keyset', run:
$ gcloud edge-cache keysets create my-keyset \ --public-key='id=KEYID,value=BASE64PUBLICKEY'
- Keyset resource - The name of the EdgeCacheKeyset resource to create. The
arguments in this group can be used to specify the attributes of this resource. (NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute:
- —
provide the argument keyset on the command line with a fully specified name;
- —
set the property core/project;
- —
provide the argument --project on the command line.
This must be specified.
- KEYSET
ID of the keyset or fully qualified identifier for the keyset. To set the keyset attribute:
provide the argument keyset on the command line.
This positional argument must be specified if any of the other arguments in this group are specified.
- --location=LOCATION
The location Id.
To set the location attribute:
provide the argument keyset on the command line with a fully specified name;
provide the argument --location on the command line;
use global location.
- --async
Return immediately, without waiting for the operation in progress to complete.
- --description=DESCRIPTION
Human-readable description of the resource.
- --labels=KEY=VALUE
List of KEY=VALUE labels to attach to this resource.
- --public-key=PUBLIC_KEY
Set of public keys to use for validating signed requests, when associated with a route. This flag can be repeated to create a Keyset with multiple public keys.
If you are providing your own public keys, specify the key in the form id=ID,value=BASE64ENCODEDPUBLICKEY.
If you are using Google-managed public keys as part of a dual-token setup, specify the key in the form id=ID,managed=true.
- id
id (name) name of the key within the keyset.
- value
URL-safe base64 encoded public key. Cannot be specified if managed=true.
- managed
Boolean indicating this is a Google-managed key. Cannot be specified if value=true.
To create a public key with id 'foo', pass --public-key='id=foo,value=VALUE' to gcloud edge-cache keysets create.
To create a Google-managed public key with id 'bar', pass --public-key='id=foo,managed=true' to gcloud edge-cache keysets create.
At least one of public-key or validation-shared-key must be specified.
- --validation-shared-key=VALIDATION_SHARED_KEY
An ordered list of shared keys to use for validating signed requests.
To create a validation shared key pointing to a Secret Manager secret version with name projects/PROJECT/secrets/SECRET/versions/VERSION, pass --validation-shared-key='secret_version=projects/PROJECT/secrets/SECRET/versions/VERSION' to gcloud edge-cache keysets create.
- secret_version
The name of the secret in Secret Manager. Must be in the format projects/PROJECT/secrets/SECRET/versions/VERSION.
At least one of public-key or validation-shared-key must be specified.
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
This command uses the networkservices/v1 API. The full documentation for this API can be found at: https://cloud.google.com/networking
This variant is also available:
$ gcloud alpha edge-cache keysets create