turbot/gcp

steampipe plugin install gcpsteampipe plugin install gcp
On This Page
Get Involved

Table: gcp_service_account_key

Service Account Keys are public/private RSA key pairs which are used to authenticate to Google Cloud APIs.

Examples

List of service accounts using user managed keys

select
service_account_name as service_account,
title,
key_type
from
gcp_service_account_key
where
key_type = 'USER_MANAGED';

Validity time for the service account keys

select
title,
service_account_name as service_account,
valid_after_time,
valid_before_time
from
gcp_service_account_key;

.inspect gcp_service_account_key

GCP Service Account Key

NameTypeDescription
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
key_algorithmtextSpecifies the algorithm (and possibly key size) for the key
key_origintextSpecifies the origin of the key
key_typetextThe type of the service account key
locationtextThe GCP multi-region, region, or zone in which the resource is located.
nametextThe friendly name that identifies the service account key
private_key_datatextSpecifies the private key data, which allows the assertion of the service account identity
private_key_typetextSpecifies the output format for the private key
projecttextThe GCP Project in which the resource is located.
public_key_datatextSpecifies the public key data
service_account_nametextService account in which the key is located
titletextTitle of the resource.
valid_after_timetimestamp without time zoneSpecifies the timestamp, after which the key can be used
valid_before_timetimestamp without time zoneSpecifies the timestamp, after which the key gets invalid