Unless otherwise configured, the client libraries use Application Default Credentials to authenticate with Google Cloud Services. While this works for most applications, in some cases you may need to override this default. You can do so by providing the UnifiedCredentialsOption The following example shows how to explicitly load a service account key file:
[](std::string const& keyfile) {
auto is = std::ifstream(keyfile);
is.exceptions(std::ios::badbit); // Minimal error handling in examples
auto contents = std::string(std::istreambuf_iterator<char>(is.rdbuf()), {});
auto options =
google::cloud::Options{}.set<google::cloud::UnifiedCredentialsOption>(
google::cloud::MakeServiceAccountCredentials(contents));
return google::cloud::secretmanager_v1::SecretManagerServiceClient(
google::cloud::secretmanager_v1::MakeSecretManagerServiceConnection(
options));
}
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-14 UTC."],[[["\u003cp\u003eThis webpage provides documentation for the \u003ccode\u003esecretmanager\u003c/code\u003e service, including its various versions ranging from 2.10.1 up to 2.37.0-rc, with links to specific documentation for each version.\u003c/p\u003e\n"],["\u003cp\u003eThe client libraries typically use Application Default Credentials for authentication with Google Cloud Services, but this default behavior can be overridden if needed.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eUnifiedCredentialsOption\u003c/code\u003e allows developers to override the default credentials, like in the provided example of loading a service account key file.\u003c/p\u003e\n"],["\u003cp\u003eThe example provided demonstrates how to explicitly load a service account key file and use it for authentication, but users are encouraged to consult the service account key management guide for more detailed best practices.\u003c/p\u003e\n"],["\u003cp\u003eThe documentation offers additional information on authentication components, including factory functions for creating credential objects.\u003c/p\u003e\n"]]],[],null,["Version 2.32.0keyboard_arrow_down\n\n- [2.42.0-rc (latest)](/cpp/docs/reference/secretmanager/latest/secretmanager-override-authentication)\n- [2.41.0](/cpp/docs/reference/secretmanager/2.41.0/secretmanager-override-authentication)\n- [2.40.0](/cpp/docs/reference/secretmanager/2.40.0/secretmanager-override-authentication)\n- [2.39.0](/cpp/docs/reference/secretmanager/2.39.0/secretmanager-override-authentication)\n- [2.38.0](/cpp/docs/reference/secretmanager/2.38.0/secretmanager-override-authentication)\n- [2.37.0](/cpp/docs/reference/secretmanager/2.37.0/secretmanager-override-authentication)\n- [2.36.0](/cpp/docs/reference/secretmanager/2.36.0/secretmanager-override-authentication)\n- [2.35.0](/cpp/docs/reference/secretmanager/2.35.0/secretmanager-override-authentication)\n- [2.34.0](/cpp/docs/reference/secretmanager/2.34.0/secretmanager-override-authentication)\n- [2.33.0](/cpp/docs/reference/secretmanager/2.33.0/secretmanager-override-authentication)\n- [2.32.0](/cpp/docs/reference/secretmanager/2.32.0/secretmanager-override-authentication)\n- [2.31.0](/cpp/docs/reference/secretmanager/2.31.0/secretmanager-override-authentication)\n- [2.30.0](/cpp/docs/reference/secretmanager/2.30.0/secretmanager-override-authentication)\n- [2.29.0](/cpp/docs/reference/secretmanager/2.29.0/secretmanager-override-authentication)\n- [2.28.0](/cpp/docs/reference/secretmanager/2.28.0/secretmanager-override-authentication)\n- [2.27.0](/cpp/docs/reference/secretmanager/2.27.0/secretmanager-override-authentication)\n- [2.26.0](/cpp/docs/reference/secretmanager/2.26.0/secretmanager-override-authentication)\n- [2.25.1](/cpp/docs/reference/secretmanager/2.25.1/secretmanager-override-authentication)\n- [2.24.0](/cpp/docs/reference/secretmanager/2.24.0/secretmanager-override-authentication)\n- [2.23.0](/cpp/docs/reference/secretmanager/2.23.0/secretmanager-override-authentication)\n- [2.22.1](/cpp/docs/reference/secretmanager/2.22.1/secretmanager-override-authentication)\n- [2.21.0](/cpp/docs/reference/secretmanager/2.21.0/secretmanager-override-authentication)\n- [2.20.0](/cpp/docs/reference/secretmanager/2.20.0/secretmanager-override-authentication)\n- [2.19.0](/cpp/docs/reference/secretmanager/2.19.0/secretmanager-override-authentication)\n- [2.18.0](/cpp/docs/reference/secretmanager/2.18.0/secretmanager-override-authentication)\n- [2.17.0](/cpp/docs/reference/secretmanager/2.17.0/secretmanager-override-authentication)\n- [2.16.0](/cpp/docs/reference/secretmanager/2.16.0/secretmanager-override-authentication)\n- [2.15.1](/cpp/docs/reference/secretmanager/2.15.1/secretmanager-override-authentication)\n- [2.14.0](/cpp/docs/reference/secretmanager/2.14.0/secretmanager-override-authentication)\n- [2.13.0](/cpp/docs/reference/secretmanager/2.13.0/secretmanager-override-authentication)\n- [2.12.0](/cpp/docs/reference/secretmanager/2.12.0/secretmanager-override-authentication)\n- [2.11.0](/cpp/docs/reference/secretmanager/2.11.0/secretmanager-override-authentication)\n- [2.10.1](/cpp/docs/reference/secretmanager/2.10.1/secretmanager-override-authentication) \n\nHow to Override the Authentication Credentials\n==============================================\n\nUnless otherwise configured, the client libraries use [Application Default Credentials](https://cloud.google.com/docs/authentication#adc) to authenticate with Google Cloud Services. While this works for most applications, in some cases you may need to override this default. You can do so by providing the [UnifiedCredentialsOption](https://cloud.google.com/cpp/docs/reference/common/latest/structgoogle_1_1cloud_1_1UnifiedCredentialsOption.html) The following example shows how to explicitly load a service account key file: \n\n [](std::string const& keyfile) {\n auto is = std::ifstream(keyfile);\n is.exceptions(std::ios::badbit); // Minimal error handling in examples\n auto contents = std::string(std::istreambuf_iterator\u003cchar\u003e(is.rdbuf()), {});\n auto options =\n google::cloud::Options{}.set\u003cgoogle::cloud::UnifiedCredentialsOption\u003e(\n google::cloud::MakeServiceAccountCredentials(contents));\n return google::cloud::secretmanager_v1::SecretManagerServiceClient(\n google::cloud::secretmanager_v1::MakeSecretManagerServiceConnection(\n options));\n }\n\nKeep in mind that we chose this as an example because it is relatively easy to understand. Consult the [Best practices for managing service account keys](https://cloud.google.com/iam/docs/best-practices-for-managing-service-account-keys) guide for more details.\n\n###### See Also\n\n[Authentication Components](https://cloud.google.com/cpp/docs/reference/common/latest/group__guac.html) - for more information on the factory functions to create [`google::cloud::Credentials`](https://cloud.google.com/cpp/docs/reference/common/latest/classgoogle_1_1cloud_1_1Credentials.html) objects."]]
