Setting up SPE GCP Connector Configurations Using the GCPConfig.json file

You can configure the SPE GCP Connector settings using the GCPConfig.json file.

Key sections of the GCPConfig.json file

  1. NRTSBucketSettings
    1. PollerQueue: If this setting is not present, the subscription with the given name is created.
    2. ReporterTopic: This setting must pre-exist. All scan events are logged here.
  2. CommonSetting
    1. QuarantineSetting
    2. ScanActions
    3. ObjectTagSettings
    4. DeploymentSettings: It is a unique name that is related to deployment, all events reported inside Cloud Logging will have this as prefix.
The following sample file provides details about the configurable parameters:
{ "NRTSBucketSettings": { "PollerQueue": { "QueueSetting": { "enable": true, "name": "spe-gcp-subscription-name", "url": "projects/project-name/subscriptions/spe-gcp-nrts-subscription-name" }, "batchSize": 10, "pollingIntervalSec": 60 }, "ReporterTopic": { "TopicSetting": { "enable": false, "topicName": "projects/project-name/topics/spe-gcp-topic-report-name" } } }, "CommonSetting": { "QuarantineSetting": { "enableQuarantine": true, "bucketName": "qurantine_bucket", "folderName": "qurantine" }, "ScanActions": { "avAction": "Delete", "malformedAction": "Report", "encryptedAction": "Delete", "containerviolationAction": "Report", "deleteReplaceFileContent": "File has been deleted by SPE GCP Storage Protection, due to security and threats reason." }, "ObjectTagSettings":{ "scanTaggingEnabled": true, "scanVerdictLabel": "scan_verdict", "scanTimeLabel": "scan_time" }, "DeploymentSettings" : { "stackNamespace" : "spe_connector" } } }