chore(secretmanager): Add Regional Code Samples for Delayed Destroy

Author: YashSaraf11

secretmanager/api/SecretManager.Samples.Tests/CreateRegionalSecretWithDelayedDestroyTests.cs

@@ -0,0 +1,56 @@
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+using Google.Cloud.SecretManager.V1;
+using Google.Protobuf.WellKnownTypes;
+
+using System;
+using Xunit;
+
+
+[Collection(nameof(RegionalSecretManagerFixture))]
+public class CreateRegionalSecretWithDelayedDestroyTests
+{
+    private readonly RegionalSecretManagerFixture _fixture;
+    private readonly CreateRegionalSecretWithDelayedDestroySample _sample;
+
+    public CreateRegionalSecretWithDelayedDestroyTests(RegionalSecretManagerFixture fixture)
+    {
+        _fixture = fixture;
+        _sample = new CreateRegionalSecretWithDelayedDestroySample();
+    }
+
+    [Fact]
+    public void CreatesRegionalSecretsWithDelayedDestroy()
+    {
+        // Get the SecretName from the set ProjectId & LocationId.
+        SecretName secretName = SecretName.FromProjectLocationSecret(_fixture.ProjectId, _fixture.LocationId, _fixture.RandomId());
+
+        // Set the timeToLive Value.
+        int timeToLive = 86400;
+
+        // Run the sample.
+        Secret result = _sample.CreateRegionalSecretWithDelayedDestroy(
+          projectId: secretName.ProjectId, locationId: secretName.LocationId, secretId: secretName.SecretId, timeToLive: timeToLive);
+
+        // Assert that the secret was created with corect configurations
+        Assert.Equal(result.SecretName.SecretId, secretName.SecretId);
+        Assert.Equal(result.VersionDestroyTtl, Duration.FromTimeSpan(TimeSpan.FromSeconds(timeToLive)));
+
+        // Clean the created secret.
+        _fixture.DeleteSecret(secretName);
+    }
+}

secretmanager/api/SecretManager.Samples.Tests/DestroyRegionalSecretVersionTests.cs

@@ -51,4 +51,29 @@ public void DestroysRegionalSecretVersions()
         // Clean the created secret.
         _fixture.DeleteSecret(secret.SecretName);
     }
+
+    [Fact]
+    public void DisablesSecretVersionWhenDelayedDestroyEnabled()
+    {
+        // Create the secret and add secret version.
+        Secret secret = _fixture.CreateSecretWithDelayedDestroy();
+
+        // Add the secret version to the created secret.
+        SecretVersion version = _fixture.AddSecretVersion(secret);
+        SecretVersionName secretVersionName = version.SecretVersionName;
+
+        // Run the sample.
+        SecretVersion secretVersion = _sample.DestroyRegionalSecretVersion(
+          projectId: secretVersionName.ProjectId,
+          locationId: secretVersionName.LocationId,
+          secretId: secretVersionName.SecretId,
+          secretVersionId: secretVersionName.SecretVersionId
+        );
+
+        // Assert that the Secret gets disabled.
+        Assert.Equal(SecretVersion.Types.State.Disabled, secretVersion.State);
+
+        // Clean up the created resource
+        _fixture.DeleteSecret(secret.SecretName);
+    }
 }

secretmanager/api/SecretManager.Samples.Tests/DisableRegionalSecretDelayedDestroyTests.cs

@@ -0,0 +1,48 @@
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+using Google.Cloud.SecretManager.V1;
+using Xunit;
+
+[Collection(nameof(RegionalSecretManagerFixture))]
+public class DisableRegionalSecretDelayedDestroyTests
+{
+    private readonly RegionalSecretManagerFixture _fixture;
+    private readonly DisableRegionalSecretDelayedDestroySample _sample;
+
+    public DisableRegionalSecretDelayedDestroyTests(RegionalSecretManagerFixture fixture)
+    {
+        _fixture = fixture;
+        _sample = new DisableRegionalSecretDelayedDestroySample();
+    }
+
+    [Fact]
+    public void DisableRegionalsSecretDelayedDestroy()
+    {
+        // Create the secret and add secret version.
+        Secret secret = _fixture.CreateSecretWithDelayedDestroy();
+
+        // Run the code.
+        Secret disabledSecret = _sample.DisableRegionalSecretDelayedDestroy(
+          projectId: secret.SecretName.ProjectId, locationId: secret.SecretName.LocationId, secretId: secret.SecretName.SecretId);
+
+        // Assert that the secret was created with the correct configurations.
+        Assert.Null(disabledSecret.VersionDestroyTtl);
+
+        // Clean the created secret.
+        _fixture.DeleteSecret(secret.SecretName);
+    }
+}

secretmanager/api/SecretManager.Samples.Tests/DisableRegionalSecretVersionTests.cs

@@ -51,4 +51,32 @@ public void DisablesRegionalSecretVersions()
         // Clean the created secret.
         _fixture.DeleteSecret(secret.SecretName);
     }
+
+    [Fact]
+    public void DisablesSecretVersionScheduledForDestruction()
+    {
+        // Create the secret and add secret version.
+        Secret secret = _fixture.CreateSecretWithDelayedDestroy();
+
+        // Add the secret version to the created secret.
+        SecretVersion version = _fixture.AddSecretVersion(secret);
+        SecretVersionName secretVersionName = version.SecretVersionName;
+
+        // Destroy the created secret.
+        SecretVersion destroyedVersion = _fixture.DestroySecretVersion(version);
+
+        // Run the code sample.
+        SecretVersion secretVersion = _sample.DisableRegionalSecretVersion(
+          projectId: secretVersionName.ProjectId,
+          locationId: secretVersionName.LocationId,
+          secretId: secretVersionName.SecretId,
+          secretVersionId: secretVersionName.SecretVersionId
+        );
+
+        // Assert that the Secret gets disabled.
+        Assert.Equal(SecretVersion.Types.State.Disabled, secretVersion.State);
+
+        // Clean up the created resource
+        _fixture.DeleteSecret(secret.SecretName);
+    }
 }

secretmanager/api/SecretManager.Samples.Tests/EnableRegionalSecretVersionTests.cs

@@ -51,4 +51,32 @@ public void EnablesRegionalSecretVersions()
         // Clean the created secret.
         _fixture.DeleteSecret(secret.SecretName);
     }
+
+    [Fact]
+    public void EnablesSecretVersionScheduledForDestruction()
+    {
+        // Create the secret and add secret version.
+        Secret secret = _fixture.CreateSecretWithDelayedDestroy();
+
+        // Add the secret version to the created secret.
+        SecretVersion version = _fixture.AddSecretVersion(secret);
+        SecretVersionName secretVersionName = version.SecretVersionName;
+
+        // Destroy the created secret.
+        SecretVersion destroyedVersion = _fixture.DestroySecretVersion(version);
+
+        // Run the code sample.
+        SecretVersion secretVersion = _sample.EnableRegionalSecretVersion(
+          projectId: secretVersionName.ProjectId,
+          locationId: secretVersionName.LocationId,
+          secretId: secretVersionName.SecretId,
+          secretVersionId: secretVersionName.SecretVersionId
+        );
+
+        // Assert that the Secret gets disabled.
+        Assert.Equal(SecretVersion.Types.State.Enabled, secretVersion.State);
+
+        // Clean up the created resource
+        _fixture.DeleteSecret(secret.SecretName);
+    }
 }

secretmanager/api/SecretManager.Samples.Tests/RegionalSecretManagerFixture.cs

@@ -15,6 +15,7 @@
 using Google.Api.Gax.ResourceNames;
 using Google.Cloud.SecretManager.V1;
 using Google.Protobuf;
+using Google.Protobuf.WellKnownTypes;
 using System;
 using System.Text;
 using Xunit;
@@ -90,6 +91,20 @@ public Secret CreateSecret(string secretId)
         return Client.CreateSecret(locationName, secretId, secret);
     }
 
+    public Secret CreateSecretWithDelayedDestroy()
+    {
+        LocationName locationName = new LocationName(ProjectId, LocationId);
+
+        Secret secret = new Secret
+        {
+            VersionDestroyTtl = new Duration
+            {
+                Seconds = 24 * 60 * 60,
+            }
+        };
+        return Client.CreateSecret(locationName, RandomId(), secret);
+    }
+
     public SecretVersion AddSecretVersion(Secret secret)
     {
         SecretPayload payload = new SecretPayload
@@ -117,4 +132,9 @@ public SecretVersion DisableSecretVersion(SecretVersion version)
     {
         return Client.DisableSecretVersion(version.SecretVersionName);
     }
+
+    public SecretVersion DestroySecretVersion(SecretVersion version)
+    {
+        return Client.DestroySecretVersion(version.SecretVersionName);
+    }
 }

secretmanager/api/SecretManager.Samples.Tests/UpdateRegionalSecretWithDelayedDestroyTests.cs

@@ -0,0 +1,58 @@
+/*
+ * Copyright 2024 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+using Google.Cloud.SecretManager.V1;
+using Google.Protobuf.WellKnownTypes;
+using System;
+using Xunit;
+
+[Collection(nameof(RegionalSecretManagerFixture))]
+public class UpdateRegionalSecretWithDelayedDestroyTests
+{
+    private readonly RegionalSecretManagerFixture _fixture;
+    private readonly UpdateRegionalSecretWithDelayedDestroySample _sample;
+
+    public UpdateRegionalSecretWithDelayedDestroyTests(RegionalSecretManagerFixture fixture)
+    {
+        _fixture = fixture;
+        _sample = new UpdateRegionalSecretWithDelayedDestroySample();
+    }
+
+    [Fact]
+    public void UpdatesRegionalSecretsWithDelayedDestroy()
+    {
+        // Create the secret and add secret version.
+        Secret secret = _fixture.CreateSecretWithDelayedDestroy();
+
+        // Set the updated time to live value.
+        int updatedTimeToLive = 172800;
+
+        // Run the sample.
+        Secret result = _sample.UpdateRegionalSecretWithDelayedDestroy(
+          projectId: secret.SecretName.ProjectId,
+          locationId: secret.SecretName.LocationId,
+          secretId: secret.SecretName.SecretId,
+          updatedTimeToLive: updatedTimeToLive
+        );
+
+        // Assert that the secret was updated with the correct configurations.
+        Assert.Equal(result.SecretName.SecretId, secret.SecretName.SecretId);
+        Assert.Equal(result.VersionDestroyTtl, Duration.FromTimeSpan(TimeSpan.FromSeconds(updatedTimeToLive)));
+
+        // Clean the created secret.
+        _fixture.DeleteSecret(secret.SecretName);
+    }
+}

secretmanager/api/SecretManager.Samples/CreateRegionalSecretWithDelayedDestroy.cs

@@ -0,0 +1,56 @@
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+// [START secretmanager_create_regional_secret_with_delayed_destroy]
+
+using Google.Api.Gax.ResourceNames;
+using Google.Cloud.SecretManager.V1;
+using Google.Protobuf.WellKnownTypes;
+using System.Collections.Generic;
+
+public class CreateRegionalSecretWithDelayedDestroySample
+{
+    public Secret CreateRegionalSecretWithDelayedDestroy(
+      string projectId = "my-project",
+      string locationId = "my-location",
+      string secretId = "my-secret",
+      int timeToLive = 86400
+    )
+    {
+        // Create the Regional Secret Manager Client.
+        SecretManagerServiceClient client = new SecretManagerServiceClientBuilder
+        {
+            Endpoint = $"secretmanager.{locationId}.rep.googleapis.com"
+        }.Build();
+
+        // Build the parent resource name.
+        LocationName location = new LocationName(projectId, locationId);
+
+        // Build the secret.
+        Secret secret = new Secret
+        {
+            VersionDestroyTtl = new Duration
+            {
+                Seconds = timeToLive,
+            }
+        };
+
+        // Call the API.
+        Secret createdSecret = client.CreateSecret(location, secretId, secret);
+        return createdSecret;
+    }
+}
+// [END secretmanager_create_regional_secret_with_delayed_destroy]