Skip to main content
POST
/
api
/
v1
/
secrets
/
{vault_id}
/
content
SetTextContent
package main

import(
	"context"
	"github.com/conductorone/conductorone-sdk-go/pkg/models/shared"
	conductoronesdkgo "github.com/conductorone/conductorone-sdk-go"
	"github.com/conductorone/conductorone-sdk-go/pkg/models/operations"
	"log"
)

func main() {
    ctx := context.Background()

    s := conductoronesdkgo.New(
        conductoronesdkgo.WithSecurity(shared.Security{
            BearerAuth: "<YOUR_BEARER_TOKEN_HERE>",
            Oauth: "<YOUR_OAUTH_HERE>",
        }),
    )

    res, err := s.PaperSecret.SetTextContent(ctx, operations.C1APISecretsV1PaperSecretServiceSetTextContentRequest{
        VaultID: "<id>",
    })
    if err != nil {
        log.Fatal(err)
    }
    if res.PaperSecretServiceSetTextContentResponse != nil {
        // handle response
    }
}
{
  "secret": {
    "allowedEmails": [
      "<string>"
    ],
    "allowedUserIds": [
      "<string>"
    ],
    "contentDeleted": true,
    "contentExpiresAt": "2023-11-07T05:31:56Z",
    "contentReady": true,
    "contentType": "<string>",
    "createdAt": "2023-11-07T05:31:56Z",
    "creatorUserId": "<string>",
    "currentViews": 123,
    "deletedAt": "2023-11-07T05:31:56Z",
    "displayName": "<string>",
    "fileSize": "<string>",
    "filename": "<string>",
    "maxViews": 123,
    "shareCode": "<string>",
    "shareUrl": "<string>",
    "updatedAt": "2023-11-07T05:31:56Z",
    "vaultId": "<string>"
  }
}

Authorizations

Authorization
string
header
required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Authorization
string
header
required

This API uses OAuth2 with the Client Credential flow. Client Credentials must be sent in the BODY, not the headers. For an example of how to implement this, refer to the c1TokenSource.Token() function.

Path Parameters

vault_id
string
required

The vaultId field.

Body

application/json

The PaperSecretServiceSetTextContentRequest message.

encryptedContent
file

Age-encrypted content bytes. The plaintext MUST be encrypted using the Age encryption format to the age_recipient returned by CreateInternal/CreateExternal. The resulting bytes begin with "age-encryption.org/v1\n" followed by the encrypted payload. Maximum 64KB after encryption — for larger content, create a FILE secret and use the upload_url instead.

inputFormat
enum<string>

Input format hint for the viewer UI when the secret is decrypted. Does not affect encryption — this is metadata only.

Available options:
SECRET_INPUT_FORMAT_UNSPECIFIED,
SECRET_INPUT_FORMAT_PLAINTEXT,
SECRET_INPUT_FORMAT_JSON,
SECRET_INPUT_FORMAT_YAML,
SECRET_INPUT_FORMAT_KEY_VALUE

Response

200 - application/json

Successful response

The PaperSecretServiceSetTextContentResponse message.

secret
Paper Secret · object

PaperSecret is the API view of a secret (combines Vault + PaperVault fields). The vault_id is the primary identifier (Vault.id).