How can I decode the base64 payload from Google Secret Manager?

Question

When using secret manager, the response is base64 encoded. How would one go about decoding it?

sendGridSend: 
   steps:    
   - getSecret:    
       call: http.get    
       args:    
           url: ${"https://secretmanager.googleapis.com/v1/projects/" + sys.get_env("GOOGLE_CLOUD_PROJECT_NUMBER") + "/secrets/" + secret + "/versions/latest:access"}    
           auth:    
               type: OAuth2    
       result: secretBase64Payload

@Pentium10 No, I don't think so. Feel free to post a dispute on [meta] or discuss it in [SOCVR](http://chat.stackoverflow.com/rooms/41570/so-close-vote-reviewers) — Samuel Liew, Nov 16 '20 at 09:25

Pentium10 · Accepted Answer · 2020-11-16T14:08:03.770

2

It would be like the below snippet, by using base64.decode. As this product just got out of alpha, there is no yet a documentation page linking to the available functions.

sendGridSend: 
   params: [secret, from, to, subject, content, contentType]    
   steps:    
   - getSecret:    
       call: http.get    
       args:    
           url: ${"https://secretmanager.googleapis.com/v1/projects/" + sys.get_env("GOOGLE_CLOUD_PROJECT_NUMBER") + "/secrets/" + secret + "/versions/latest:access"}    
           auth:    
               type: OAuth2    
       result: sendGridKey    
   - decodeSecrets:    
       assign:    
       - decodedKey: ${text.decode(base64.decode(sendGridKey.body.payload.data))}

edited Nov 16 '20 at 14:08

answered Nov 12 '20 at 13:37

Pentium10

204,586
122
423
502

Thanks. Is there a list of supported functions? – Ed Kong Nov 14 '20 at 13:41
That's something I forwarded to the relevant people. Hopefully they will create it. – Pentium10 Nov 14 '20 at 17:01

How can I decode the base64 payload from Google Secret Manager?

1 Answers1