Press the function button four times rapidly and then hold it a fifth time until you hear a ringing chime.
sphr2k
/ secretmanager.tf
Created
September 19, 2025 10:42
GCP Secret Manager write-only secrets with automatic versioning
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| locals { | |
| secrets = yamldecode(file("${path.module}/secrets/secrets-staging.plain.yml")) | |
| # Derive numeric versions from the first 15 characters of the SHA-256 hash of the secret values | |
| # to trigger replacement when the secret value changes. | |
| secret_data_wo_versions = { | |
| for key, value in local.secrets : key => | |
| parseint(substr(sha256(tostring(value)), 0, 15), 16) | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function gcpsqlh --description "Run cloud-sql-proxy with current GCP project, optionally impersonating a service account" | |
| # Get the current GCP project | |
| set -l current_project (gcloud config get-value project) | |
| if test -z "$current_project" | |
| echo "No GCP project is currently set. Please set a project using 'gcloud config set project PROJECT_ID'" | |
| return 1 | |
| end | |
| # Get the instance connection name |
sphr2k
/ bitbucket-pipelines.yml
Created
November 8, 2024 13:29
Bitbucket & Google Cloud Workload ID Federation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| image: google/cloud-sdk:latest | |
| steps: | |
| - step: &test-id-fed | |
| name: Test | |
| services: | |
| - docker | |
| oidc: true | |
| script: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import argparse | |
| import datetime | |
| import logging | |
| from google.api import metric_pb2 | |
| from google.cloud import monitoring_v3 | |
| from google.protobuf import timestamp_pb2 | |
| import google.auth | |
| logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(levelname)s - %(message)s") |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from flask import Flask, request, Response | |
| from flask_cors import CORS | |
| import requests | |
| import json | |
| import subprocess | |
| import google.auth | |
| import google.auth.exceptions | |
| from google.auth.transport.requests import Request | |
| import logging |
sphr2k
/ gcp-backend-logging.py
Last active
July 19, 2024 10:10
Google Cloud Backend Service Logging Manager
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from google.cloud import compute_v1 | |
| import google.auth | |
| from dataclasses import dataclass | |
| from typing import List | |
| import questionary | |
| from questionary import Choice | |
| @dataclass | |
| class LogConfig: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| OAUTH_CLIENT_ID=1234567890-j9onig1ofcgle7iogv8fceu04v8hriuv.apps.googleusercontent.com | |
| [email protected] | |
| URL=https://your-iap-protected-endpoint | |
| ID_TOKEN=$( | |
| gcloud auth print-identity-token \ | |
| --audiences $OAUTH_CLIENT_ID \ | |
| --include-email \ | |
| --impersonate-service-account $AUTHORIZED_SA | |
| ) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function gcpswitch -d "Switch GCP project" | |
| # Retrieve all GCP projects in JSON format | |
| set -l projects_json (gcloud projects list --format=json) | |
| # Parse JSON to extract project IDs | |
| set -l projects (echo $projects_json | jq -r '.[].projectId') | |
| # Define the regex patterns to filter projects | |
| set -l patterns "hadv-" "hadvimpexp-" "alpen-" "alen-" |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // ==UserScript== | |
| // @name Link Extractor | |
| // @namespace http://tampermonkey.net/ | |
| // @version 0.6 | |
| // @description Extract and display links from web sites pages based on specific patterns | |
| // @author You | |
| // @match https://my-url.com/* | |
| // @grant none | |
| // ==/UserScript== |
NewerOlder