Stack Overflow
Stack Overflow

Questions tagged [google-iap]

Questions related to Google Cloud Identity Aware Proxy

114 questions
2
votes
1 answer

Accessing Google Cloud IAP protected resource with bearer token gives error code 13

I am trying to access a resource protected by Google Cloud IAP from my iOS app. I am able to login to my Google account from the app and receive an ID token, but I receive the following response with HTTP error code 401 when setting the ID token as…
Alexander
  • 93
  • 1
  • 8
2
votes
1 answer

Set custom domain for cookies with Google IAP

I'm using Google Cloud IAP (Identity Aware Proxy) to restrict access to several services running on different subdomains (a.mycompany.com, b.mycompany.com, etc.). When I log in to a.mycompany.com, I'd like it to log me in to b.mycompany.com as…
danvk
  • 13,227
  • 3
  • 51
  • 86
2
votes
1 answer

GCP IAP Java example returning ComputeEngineCredentials instead of ServiceAccountCredentials

Context I have some services in Google AppEngine Flexible environment communicating through APIs, and while I am using IAP for managing user access. I have to programmatically authenticate each service with the Bearer JWT token. Problem In my Java…
Mehdi Benmoha
  • 2,992
  • 3
  • 18
  • 37
2
votes
0 answers

Using Google Identity-Aware Proxy and Google SignIn in iOS project

We are using Google IAP in our existing iOS application. So on app initialisation we do the authentication for IAP. This works fine. Now, when user clicks on Sign in with google functionality, we have to again show the prompt option where he will…
Shantanu
  • 2,898
  • 2
  • 21
  • 31
2
votes
1 answer

Is it possible to get user group membership from Google Cloud Identity Aware Proxy generated token

I would like to add user groups membership information to JWT token generated from Identity Aware Proxy. We could handle this by calling Directory API from our applications after getting user identifier by decoding JWT token, but we need to…
Mikael Gibert
  • 195
  • 1
  • 2
  • 6
2
votes
1 answer

IAP in front of a load balancer pointing at a storage bucket

I have a cloud storage bucket serving static content. In front of that I have provisioned a load balancer which serves the static content over SSL. Is it possible to put a IAP in front of the load balancer to secure the content being served in the…
Samuel
  • 2,169
  • 1
  • 21
  • 35
2
votes
1 answer

Fine grained security with Google Cloud Identity Aware Proxy

The context is wanting to use Google IAP to secure access for a set of business and individual customers. There is a single central service running in the Google cloud which supports multiple customers and hence multiple non-overlapping security…
Richard Swan
  • 21
  • 2
2
votes
1 answer

Google cloud client libraries and user authentication

I am developing my first app for Google Cloud Platform. In particular, I am using Node.js as base-framework. Google itself provides Node.js client libraries to interact with their services. For instance, this code is able to create a new bucket…
SubZeno
  • 311
  • 3
  • 14
2
votes
2 answers

Google Pub/Sub push subscription into IAP-protected App Engine

I am testing out a very basic Pub/Sub subscription. I have the push endpoint set to an App I have deployed through a Python Flex service in App Engine. The service is in a project with Identity-Aware Proxy enabled. The IAP is configured to allow…
Bill Snider
  • 21
  • 1
2
votes
1 answer

appengine service to service queries not working

I followed those instructions I have an appengine where 2 services (let's call them A and B) are deployed. The appengine is configured with IAP. (Identity Aware Proxy) I can't get B to query A. If I call it simply with urlfetch.fetch, the call get's…
Finch_Powers
  • 2,458
  • 1
  • 24
  • 32
1
vote
0 answers

Authenticating a GCP service account using Identity-Aware Proxy (IAP) in python

We are using Identity-Aware Proxy to secure our backend which is a REST API. For human users with a google account this works well so far. I'm currently trying to connect another component to this API which is authenticating using a service account.…
Nico
  • 136
  • 3
1
vote
1 answer

Service account request to IAP-protected app results in 'Invalid GCIP ID token: JWT signature is invalid'

I am trying to programmatically access an IAP-protected App Engine Standard app via Python from outside of the GCP environment. I have tried various methods, including the method shown in the docs here:…
rocklobster
  • 405
  • 4
  • 7
1
vote
1 answer

Google Cloud Identity Aware Proxy over Corporate Proxy

Configured Google Cloud Identity Aware Proxy for the application. So far, I can ssh to it no problem, as long as I am not using corporate proxy. Tried over proxy (with IAP endpoint being in 'allow' list in corporate proxy), but it failed with SSL…
user2362699
  • 496
  • 5
  • 16
1
vote
1 answer

With Identity Aware Proxy, is it possible to make a cross origin request to another GAE "service" in the same GCP project with a different hostname?

The setup: Service A (frontend): GAE serving static site, all calls made from A are happening on client side. Service B (api): GAE instance hosting REST API. Without Identity Aware Proxy, I am able to make requests from the clientside of the…
RayB
  • 1,460
  • 3
  • 19
  • 34
1
vote
1 answer

Is it possible to protect an App Engine application with IAP while having a few public URLs?

I have an Google App Engine Standard (Python 3) application that I've secured behind Google IAP. This works great! But now I need a handful of web hook urls to be public, so other services can hit them, like SendGrid. Is there a solution to this…
Adam Sherman
  • 119
  • 9
1 2
3
4 5 6 7 8