gcloud secrets versions add - create a new version of an existing secret
gcloud secrets versions add SECRET --data-file=PATH [GCLOUD_WIDE_FLAG ...]
Create a new version of an existing secret with the provided data. The command will return an error if no such secret exists.
Create a new version of an existing secret named 'my-secret' with secret data "s3cr3t":
$ printf "s3cr3t" | gcloud secrets versions add my-secret \ --data-file=-
Create a new version of an existing secret named 'my-secret' with secret data "s3cr3t" using PowerShell (Note: PowerShell will add a newline to the resulting secret):
$ Write-Output "s3cr3t" | gcloud secrets versions add my-secret \ --data-file=-
Create a new version of an existing secret named 'my-secret' with secret data from a file:
$ gcloud secrets versions add my-secret --data-file=/tmp/secret
- Secret resource - The secret to create. This represents a Cloud resource.
(NOTE) Some attributes are not given arguments in this group but can be set in other ways. To set the project attribute:
- —
provide the argument SECRET on the command line with a fully specified name;
- —
provide the argument --project on the command line;
- —
set the property core/project.
This must be specified.
- SECRET
ID of the secret or fully qualified identifier for the secret. To set the secret attribute:
provide the argument SECRET on the command line.
- --data-file=PATH
File path from which to read secret data. Set this to "-" to read the secret data from stdin.
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.
Run $ gcloud help for details.
This variant is also available:
$ gcloud beta secrets versions add