Setting up SPE GCP Connector Configurations Using the GCPConfig.json file
You can configure the SPE GCP Connector settings using the GCPConfig.json file.
Key sections of the GCPConfig.json file
- NRTSBucketSettings
- PollerQueue: If this setting is not present, the subscription with the given name is created.
- ReporterTopic: This setting must pre-exist. All scan events are logged here.
- CommonSetting
- QuarantineSetting
- ScanActions
- ObjectTagSettings
- DeploymentSettings: It is a unique name that is related to deployment, all events reported inside Cloud Logging will have this as prefix.
The following sample file provides details about the configurable parameters:
{ "NRTSBucketSettings": { "PollerQueue": { "QueueSetting": { "enable": true, "name": "spe-gcp-subscription-name", "url": "projects/project-name/subscriptions/spe-gcp-nrts-subscription-name" }, "batchSize": 10, "pollingIntervalSec": 60 }, "ReporterTopic": { "TopicSetting": { "enable": false, "topicName": "projects/project-name/topics/spe-gcp-topic-report-name" } } }, "CommonSetting": { "QuarantineSetting": { "enableQuarantine": true, "bucketName": "qurantine_bucket", "folderName": "qurantine" }, "ScanActions": { "avAction": "Delete", "malformedAction": "Report", "encryptedAction": "Delete", "containerviolationAction": "Report", "deleteReplaceFileContent": "File has been deleted by SPE GCP Storage Protection, due to security and threats reason." }, "ObjectTagSettings":{ "scanTaggingEnabled": true, "scanVerdictLabel": "scan_verdict", "scanTimeLabel": "scan_time" }, "DeploymentSettings" : { "stackNamespace" : "spe_connector" } } }