google-cloud-secret_manager-v1beta2 0.a → 0.1.0

data/proto_docs/google/cloud/secretmanager/v1beta2/resources.rb

@@ -0,0 +1,499 @@
+# frozen_string_literal: true
+
+# Copyright 2024 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
+
+
+module Google
+  module Cloud
+    module SecretManager
+      module V1beta2
+        # A {::Google::Cloud::SecretManager::V1beta2::Secret Secret} is a logical secret
+        # whose value and versions can be accessed.
+        #
+        # A {::Google::Cloud::SecretManager::V1beta2::Secret Secret} is made up of zero or
+        # more {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersions} that
+        # represent the secret data.
+        # @!attribute [r] name
+        #   @return [::String]
+        #     Output only. The resource name of the
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} in the format
+        #     `projects/*/secrets/*`.
+        # @!attribute [rw] replication
+        #   @return [::Google::Cloud::SecretManager::V1beta2::Replication]
+        #     Optional. Immutable. The replication policy of the secret data attached to
+        #     the {::Google::Cloud::SecretManager::V1beta2::Secret Secret}.
+        #
+        #     The replication policy cannot be changed after the Secret has been created.
+        # @!attribute [r] create_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. The time at which the
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} was created.
+        # @!attribute [rw] labels
+        #   @return [::Google::Protobuf::Map{::String => ::String}]
+        #     The labels assigned to this Secret.
+        #
+        #     Label keys must be between 1 and 63 characters long, have a UTF-8 encoding
+        #     of maximum 128 bytes, and must conform to the following PCRE regular
+        #     expression: `[\p{Ll}\p{Lo}][\p{Ll}\p{Lo}\p{N}_-]{0,62}`
+        #
+        #     Label values must be between 0 and 63 characters long, have a UTF-8
+        #     encoding of maximum 128 bytes, and must conform to the following PCRE
+        #     regular expression: `[\p{Ll}\p{Lo}\p{N}_-]{0,63}`
+        #
+        #     No more than 64 labels can be assigned to a given resource.
+        # @!attribute [rw] topics
+        #   @return [::Array<::Google::Cloud::SecretManager::V1beta2::Topic>]
+        #     Optional. A list of up to 10 Pub/Sub topics to which messages are published
+        #     when control plane operations are called on the secret or its versions.
+        # @!attribute [rw] expire_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Optional. Timestamp in UTC when the
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} is scheduled to
+        #     expire. This is always provided on output, regardless of what was sent on
+        #     input.
+        # @!attribute [rw] ttl
+        #   @return [::Google::Protobuf::Duration]
+        #     Input only. The TTL for the
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret}.
+        # @!attribute [rw] etag
+        #   @return [::String]
+        #     Optional. Etag of the currently stored
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret}.
+        # @!attribute [rw] rotation
+        #   @return [::Google::Cloud::SecretManager::V1beta2::Rotation]
+        #     Optional. Rotation policy attached to the
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret}. May be excluded if
+        #     there is no rotation policy.
+        # @!attribute [rw] version_aliases
+        #   @return [::Google::Protobuf::Map{::String => ::Integer}]
+        #     Optional. Mapping from version alias to version name.
+        #
+        #     A version alias is a string with a maximum length of 63 characters and can
+        #     contain uppercase and lowercase letters, numerals, and the hyphen (`-`)
+        #     and underscore ('_') characters. An alias string must start with a
+        #     letter and cannot be the string 'latest' or 'NEW'.
+        #     No more than 50 aliases can be assigned to a given secret.
+        #
+        #     Version-Alias pairs will be viewable via GetSecret and modifiable via
+        #     UpdateSecret. Access by alias is only supported for
+        #     GetSecretVersion and AccessSecretVersion.
+        # @!attribute [rw] annotations
+        #   @return [::Google::Protobuf::Map{::String => ::String}]
+        #     Optional. Custom metadata about the secret.
+        #
+        #     Annotations are distinct from various forms of labels.
+        #     Annotations exist to allow client tools to store their own state
+        #     information without requiring a database.
+        #
+        #     Annotation keys must be between 1 and 63 characters long, have a UTF-8
+        #     encoding of maximum 128 bytes, begin and end with an alphanumeric character
+        #     ([a-z0-9A-Z]), and may have dashes (-), underscores (_), dots (.), and
+        #     alphanumerics in between these symbols.
+        #
+        #     The total size of annotation keys and values must be less than 16KiB.
+        # @!attribute [rw] version_destroy_ttl
+        #   @return [::Google::Protobuf::Duration]
+        #     Optional. Secret Version TTL after destruction request
+        #
+        #     This is a part of the Delayed secret version destroy feature.
+        #     For secret with TTL>0, version destruction doesn't happen immediately
+        #     on calling destroy instead the version goes to a disabled state and
+        #     destruction happens after the TTL expires.
+        # @!attribute [rw] customer_managed_encryption
+        #   @return [::Google::Cloud::SecretManager::V1beta2::CustomerManagedEncryption]
+        #     Optional. The customer-managed encryption configuration of the Regionalised
+        #     Secrets. If no configuration is provided, Google-managed default encryption
+        #     is used.
+        #
+        #     Updates to the {::Google::Cloud::SecretManager::V1beta2::Secret Secret}
+        #     encryption configuration only apply to
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersions} added
+        #     afterwards. They do not apply retroactively to existing
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersions}.
+        class Secret
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # @!attribute [rw] key
+          #   @return [::String]
+          # @!attribute [rw] value
+          #   @return [::String]
+          class LabelsEntry
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+
+          # @!attribute [rw] key
+          #   @return [::String]
+          # @!attribute [rw] value
+          #   @return [::Integer]
+          class VersionAliasesEntry
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+
+          # @!attribute [rw] key
+          #   @return [::String]
+          # @!attribute [rw] value
+          #   @return [::String]
+          class AnnotationsEntry
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+        end
+
+        # A secret version resource in the Secret Manager API.
+        # @!attribute [r] name
+        #   @return [::String]
+        #     Output only. The resource name of the
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} in the
+        #     format `projects/*/secrets/*/versions/*`.
+        #
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} IDs in a
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} start at 1 and are
+        #     incremented for each subsequent version of the secret.
+        # @!attribute [r] create_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. The time at which the
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} was
+        #     created.
+        # @!attribute [r] destroy_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. The time this
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} was
+        #     destroyed. Only present if
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion#state state} is
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion::State::DESTROYED DESTROYED}.
+        # @!attribute [r] state
+        #   @return [::Google::Cloud::SecretManager::V1beta2::SecretVersion::State]
+        #     Output only. The current state of the
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}.
+        # @!attribute [rw] replication_status
+        #   @return [::Google::Cloud::SecretManager::V1beta2::ReplicationStatus]
+        #     The replication status of the
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}.
+        # @!attribute [r] etag
+        #   @return [::String]
+        #     Output only. Etag of the currently stored
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}.
+        # @!attribute [r] client_specified_payload_checksum
+        #   @return [::Boolean]
+        #     Output only. True if payload checksum specified in
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretPayload SecretPayload} object
+        #     has been received by
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretManagerService::Client SecretManagerService}
+        #     on
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretManagerService::Client#add_secret_version SecretManagerService.AddSecretVersion}.
+        # @!attribute [r] scheduled_destroy_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Optional. Output only. Scheduled destroy time for secret version.
+        #     This is a part of the Delayed secret version destroy feature. For a
+        #     Secret with a valid version destroy TTL, when a secert version is
+        #     destroyed, version is moved to disabled state and it is scheduled for
+        #     destruction Version is destroyed only after the scheduled_destroy_time.
+        # @!attribute [r] customer_managed_encryption
+        #   @return [::Google::Cloud::SecretManager::V1beta2::CustomerManagedEncryptionStatus]
+        #     Output only. The customer-managed encryption status of the
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}. Only
+        #     populated if customer-managed encryption is used and
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} is a Regionalised
+        #     Secret.
+        class SecretVersion
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # The state of a
+          # {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion},
+          # indicating if it can be accessed.
+          module State
+            # Not specified. This value is unused and invalid.
+            STATE_UNSPECIFIED = 0
+
+            # The {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} may
+            # be accessed.
+            ENABLED = 1
+
+            # The {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} may
+            # not be accessed, but the secret data is still available and can be placed
+            # back into the
+            # {::Google::Cloud::SecretManager::V1beta2::SecretVersion::State::ENABLED ENABLED}
+            # state.
+            DISABLED = 2
+
+            # The {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} is
+            # destroyed and the secret data is no longer stored. A version may not
+            # leave this state once entered.
+            DESTROYED = 3
+          end
+        end
+
+        # A policy that defines the replication and encryption configuration of data.
+        # @!attribute [rw] automatic
+        #   @return [::Google::Cloud::SecretManager::V1beta2::Replication::Automatic]
+        #     The {::Google::Cloud::SecretManager::V1beta2::Secret Secret} will
+        #     automatically be replicated without any restrictions.
+        # @!attribute [rw] user_managed
+        #   @return [::Google::Cloud::SecretManager::V1beta2::Replication::UserManaged]
+        #     The {::Google::Cloud::SecretManager::V1beta2::Secret Secret} will only be
+        #     replicated into the locations specified.
+        class Replication
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # A replication policy that replicates the
+          # {::Google::Cloud::SecretManager::V1beta2::Secret Secret} payload without any
+          # restrictions.
+          # @!attribute [rw] customer_managed_encryption
+          #   @return [::Google::Cloud::SecretManager::V1beta2::CustomerManagedEncryption]
+          #     Optional. The customer-managed encryption configuration of the
+          #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret}. If no configuration
+          #     is provided, Google-managed default encryption is used.
+          #
+          #     Updates to the {::Google::Cloud::SecretManager::V1beta2::Secret Secret}
+          #     encryption configuration only apply to
+          #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersions} added
+          #     afterwards. They do not apply retroactively to existing
+          #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersions}.
+          class Automatic
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+
+          # A replication policy that replicates the
+          # {::Google::Cloud::SecretManager::V1beta2::Secret Secret} payload into the
+          # locations specified in [Secret.replication.user_managed.replicas][]
+          # @!attribute [rw] replicas
+          #   @return [::Array<::Google::Cloud::SecretManager::V1beta2::Replication::UserManaged::Replica>]
+          #     Required. The list of Replicas for this
+          #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret}.
+          #
+          #     Cannot be empty.
+          class UserManaged
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+
+            # Represents a Replica for this
+            # {::Google::Cloud::SecretManager::V1beta2::Secret Secret}.
+            # @!attribute [rw] location
+            #   @return [::String]
+            #     The canonical IDs of the location to replicate data.
+            #     For example: `"us-east1"`.
+            # @!attribute [rw] customer_managed_encryption
+            #   @return [::Google::Cloud::SecretManager::V1beta2::CustomerManagedEncryption]
+            #     Optional. The customer-managed encryption configuration of the
+            #     [User-Managed Replica][Replication.UserManaged.Replica]. If no
+            #     configuration is provided, Google-managed default encryption is used.
+            #
+            #     Updates to the {::Google::Cloud::SecretManager::V1beta2::Secret Secret}
+            #     encryption configuration only apply to
+            #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersions}
+            #     added afterwards. They do not apply retroactively to existing
+            #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersions}.
+            class Replica
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+          end
+        end
+
+        # Configuration for encrypting secret payloads using customer-managed
+        # encryption keys (CMEK).
+        # @!attribute [rw] kms_key_name
+        #   @return [::String]
+        #     Required. The resource name of the Cloud KMS CryptoKey used to encrypt
+        #     secret payloads.
+        #
+        #     For secrets using the
+        #     {::Google::Cloud::SecretManager::V1beta2::Replication::UserManaged UserManaged}
+        #     replication policy type, Cloud KMS CryptoKeys must reside in the same
+        #     location as the [replica location][Secret.UserManaged.Replica.location].
+        #
+        #     For secrets using the
+        #     {::Google::Cloud::SecretManager::V1beta2::Replication::Automatic Automatic}
+        #     replication policy type, Cloud KMS CryptoKeys must reside in `global`.
+        #
+        #     The expected format is `projects/*/locations/*/keyRings/*/cryptoKeys/*`.
+        class CustomerManagedEncryption
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # The replication status of a
+        # {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}.
+        # @!attribute [rw] automatic
+        #   @return [::Google::Cloud::SecretManager::V1beta2::ReplicationStatus::AutomaticStatus]
+        #     Describes the replication status of a
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} with
+        #     automatic replication.
+        #
+        #     Only populated if the parent
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} has an automatic
+        #     replication policy.
+        # @!attribute [rw] user_managed
+        #   @return [::Google::Cloud::SecretManager::V1beta2::ReplicationStatus::UserManagedStatus]
+        #     Describes the replication status of a
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} with
+        #     user-managed replication.
+        #
+        #     Only populated if the parent
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} has a user-managed
+        #     replication policy.
+        class ReplicationStatus
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # The replication status of a
+          # {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} using
+          # automatic replication.
+          #
+          # Only populated if the parent
+          # {::Google::Cloud::SecretManager::V1beta2::Secret Secret} has an automatic
+          # replication policy.
+          # @!attribute [r] customer_managed_encryption
+          #   @return [::Google::Cloud::SecretManager::V1beta2::CustomerManagedEncryptionStatus]
+          #     Output only. The customer-managed encryption status of the
+          #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}. Only
+          #     populated if customer-managed encryption is used.
+          class AutomaticStatus
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+
+          # The replication status of a
+          # {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion} using
+          # user-managed replication.
+          #
+          # Only populated if the parent
+          # {::Google::Cloud::SecretManager::V1beta2::Secret Secret} has a user-managed
+          # replication policy.
+          # @!attribute [r] replicas
+          #   @return [::Array<::Google::Cloud::SecretManager::V1beta2::ReplicationStatus::UserManagedStatus::ReplicaStatus>]
+          #     Output only. The list of replica statuses for the
+          #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}.
+          class UserManagedStatus
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+
+            # Describes the status of a user-managed replica for the
+            # {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}.
+            # @!attribute [r] location
+            #   @return [::String]
+            #     Output only. The canonical ID of the replica location.
+            #     For example: `"us-east1"`.
+            # @!attribute [r] customer_managed_encryption
+            #   @return [::Google::Cloud::SecretManager::V1beta2::CustomerManagedEncryptionStatus]
+            #     Output only. The customer-managed encryption status of the
+            #     {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}. Only
+            #     populated if customer-managed encryption is used.
+            class ReplicaStatus
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+          end
+        end
+
+        # Describes the status of customer-managed encryption.
+        # @!attribute [rw] kms_key_version_name
+        #   @return [::String]
+        #     Required. The resource name of the Cloud KMS CryptoKeyVersion used to
+        #     encrypt the secret payload, in the following format:
+        #     `projects/*/locations/*/keyRings/*/cryptoKeys/*/versions/*`.
+        class CustomerManagedEncryptionStatus
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # A Pub/Sub topic which Secret Manager will publish to when control plane
+        # events occur on this secret.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     Required. The resource name of the Pub/Sub topic that will be published to,
+        #     in the following format: `projects/*/topics/*`. For publication to succeed,
+        #     the Secret Manager service agent must have the `pubsub.topic.publish`
+        #     permission on the topic. The Pub/Sub Publisher role
+        #     (`roles/pubsub.publisher`) includes this permission.
+        class Topic
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # The rotation time and period for a
+        # {::Google::Cloud::SecretManager::V1beta2::Secret Secret}. At next_rotation_time,
+        # Secret Manager will send a Pub/Sub notification to the topics configured on
+        # the Secret. {::Google::Cloud::SecretManager::V1beta2::Secret#topics Secret.topics}
+        # must be set to configure rotation.
+        # @!attribute [rw] next_rotation_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Optional. Timestamp in UTC at which the
+        #     {::Google::Cloud::SecretManager::V1beta2::Secret Secret} is scheduled to rotate.
+        #     Cannot be set to less than 300s (5 min) in the future and at most
+        #     3153600000s (100 years).
+        #
+        #     {::Google::Cloud::SecretManager::V1beta2::Rotation#next_rotation_time next_rotation_time}
+        #     MUST  be set if
+        #     {::Google::Cloud::SecretManager::V1beta2::Rotation#rotation_period rotation_period}
+        #     is set.
+        # @!attribute [rw] rotation_period
+        #   @return [::Google::Protobuf::Duration]
+        #     Input only. The Duration between rotation notifications. Must be in seconds
+        #     and at least 3600s (1h) and at most 3153600000s (100 years).
+        #
+        #     If
+        #     {::Google::Cloud::SecretManager::V1beta2::Rotation#rotation_period rotation_period}
+        #     is set,
+        #     {::Google::Cloud::SecretManager::V1beta2::Rotation#next_rotation_time next_rotation_time}
+        #     must be set.
+        #     {::Google::Cloud::SecretManager::V1beta2::Rotation#next_rotation_time next_rotation_time}
+        #     will be advanced by this period when the service automatically sends
+        #     rotation notifications.
+        class Rotation
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # A secret payload resource in the Secret Manager API. This contains the
+        # sensitive secret payload that is associated with a
+        # {::Google::Cloud::SecretManager::V1beta2::SecretVersion SecretVersion}.
+        # @!attribute [rw] data
+        #   @return [::String]
+        #     The secret data. Must be no larger than 64KiB.
+        # @!attribute [rw] data_crc32c
+        #   @return [::Integer]
+        #     Optional. If specified,
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretManagerService::Client SecretManagerService}
+        #     will verify the integrity of the received
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretPayload#data data} on
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretManagerService::Client#add_secret_version SecretManagerService.AddSecretVersion}
+        #     calls using the crc32c checksum and store it to include in future
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretManagerService::Client#access_secret_version SecretManagerService.AccessSecretVersion}
+        #     responses. If a checksum is not provided in the
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretManagerService::Client#add_secret_version SecretManagerService.AddSecretVersion}
+        #     request, the
+        #     {::Google::Cloud::SecretManager::V1beta2::SecretManagerService::Client SecretManagerService}
+        #     will generate and store one for you.
+        #
+        #     The CRC32C value is encoded as a Int64 for compatibility, and can be
+        #     safely downconverted to uint32 in languages that support this type.
+        #     https://cloud.google.com/apis/design/design_patterns#integer_types
+        class SecretPayload
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+      end
+    end
+  end
+end