Google-cloud-node: [PubSub] Use environment variables instead of file for private key?

You can provide a credentials object with the contents of your key file. So you can set env vars for each property in your key file, then pass them like you did in your snippet above, except embedded in a credentials object.

More on the ways we support auth: https://googlecloudplatform.github.io/gcloud-node/#/authorization

Let me know if this works!

I see, so I can do something like:

pubsub = gcloud.pubsub({
    projectId: 'my-project',
    credentials: {
        private_key: process.env.PRIVATE_KEY,
        client_email: process.env.CLIENT_EMAIL
    }
});

Thanks!

Yep! Sorry for the lack of a code example earlier, that's exactly right :)

I'm getting a

Error: error:0906D06C:PEM routines:PEM_read_bio:no start line

when I try to use the code snippet I commented with earlier. I tried setting the environment variable PRIVATE_KEY with and without the "BEGIN PRIVATE KEY..." markers. I don't get this error if I use config.keyFilename=/path/.../...json. What am I doing wrong? It should work based on the documentation at https://googlecloudplatform.github.io/gcloud-node/#/authorization.

(Sorry, my previous comment got deleted accidentally).

Should I raise another issue for this? I'd like if someone could attempt to replicate the bug first, to see if it's not just something I'm messing up/is unclear in the documentation.

I just tried and failed to replicate when using the exact values from my keyfile.json. I did get the error when I changed a single character from the opening and closing markers. So, be sure it's exactly the format that is in the JSON:

-----BEGIN PRIVATE KEY-----\n and \n-----END PRIVATE KEY-----\n

Hmm I'm trying the following:

var pubsub = gcloud.pubsub({
    projectId: 'projectId',
    credentials: {
        private_key: process.env.PRIVATE_KEY,
        client_email: process.env.CLIENT_EMAIL
    }
});

I tried generating a new keyfile.json file as well, and using the new private key; still didn't work. Note that I get the error when creating a topic:

pubsub.createTopic('topicname', function (err, topic, apiResponse) {
    if (err) {
        // this is where I get the error
    }
}

Also, the keyfile is for a service account; don't know if that is relevant.

I see, so I can do something like:

pubsub = gcloud.pubsub({
projectId: 'my-project',
credentials: {
private_key: process.env.PRIVATE_KEY,
client_email: process.env.CLIENT_EMAIL
}
});
Thanks!

I am doing the same thing and running on an AWS instance. However, the error I get is Error: Could not load the default credentials. Browse to https://developers.google.com/accounts/docs/application-default-credentials for more information.

What am I doing wrong?

PS: I am trying to get an existent topic.

@ShivanKaul sorry that I forgot to respond to your last comment. I hope you found a solution. If not, please re-open so we can figure it out.

@eduardo-tenorio-guiabolso I wonder if that's a new bug. Could you open a new issue? I'll take a look at it tomorrow.

OK.

@stephenplusplus here it is: https://github.com/GoogleCloudPlatform/gcloud-node/issues/1173

Thank you!!! Have been looking for this solution for so long!

Thanks a lot!

You can provide a credentials object with the contents of your key file. So you can set env vars for each property in your key file, then pass them like you did in your snippet above, except embedded in a credentials object.

More on the ways we support auth: https://googlecloudplatform.github.io/gcloud-node/#/authorization

Let me know if this works!

For anyone looking at this issue in the future, here is an updated link to the documentation:
https://googleapis.dev/nodejs/pubsub/latest/global.html#ClientConfig