I am considering migrating my current web services to Cloud Run. In Cloud Run's "Variables and Secrets", if we use Secret Manager to mount environment variables and credential files, how often will Secret Manager be read by which of the following?
Currently, the web service is accessed by about 300 people per minute, and I expect that if 1 or 2 is selected, the number of accesses to the Secret Manager will increase and the billing amount will increase. If you have any best practices, I would appreciate it if you could share them with me.
Thank you in advance for your help.
The answer depends on the code in your container. Typically each container would access Secret Manager on container start and hold those variables in the global namespace.
How many containers depend on how many simultaneous requests can be handled by each container.
How often a container is started and stopped depends on how frequently requests arrive. When a container is not processing requests it is eligible to be stopped. For your use case (300 requests per minute), consider the Always On option so that a minimum number of containers are always running.