ksobrenat32 opened a new pull request, #35524: URL: https://github.com/apache/beam/pull/35524
This pull request introduces a secrets rotation service for managing secrets securely in the Apache Beam project. It includes the configuration file, implementation of the service, and unit tests to ensure functionality. ### Configuration Setup: * Added `infra/beam_secrets/config.yaml` to define parameters for the secrets rotation service, including project ID, secret name prefix, rotation interval, maximum versions to keep, and logging configuration. ### Service Implementation: * Created `infra/beam_secrets/secret_service.py` to implement the secrets rotation service. This includes methods for creating secrets, adding secret versions, retrieving secret versions, and disabling secret versions. The service uses Google Cloud Secret Manager and includes validation for configuration parameters. ### Testing: * Added `infra/beam_secrets/test_secret_service.py` with unit tests for the `SecretService` class. Tests cover initialization, secret creation, secret version management, and error handling for invalid configurations and payloads. Mocking is used to simulate interactions with Google Cloud APIs. This is still a work in progress, feedback is appreciated. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: github-unsubscr...@beam.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
