Stack Overflow
Stack Overflow

Questions tagged [google-iap]

Questions related to Google Cloud Identity Aware Proxy

114 questions
0
votes
0 answers

How do I modify IAP OauthClient

I just noticed that two of my projects have the same OauthClient for IAP on GCP. I want to update one of the IAP resource so that each of my projects got unique OauthClient but I can't find how.. Any help ? Workaround So this ain't a solution but in…
Kimor
  • 186
  • 12
0
votes
0 answers

Accessing an IAP protected API from a localhost frontend

I often develop in a local React SPA and want to use an IAP protected backend API. The backend API is only IAP protected in dev, in production everything is open. Currently the only solution I can think of involves a mostly transparent nginx proxy…
user6188544
0
votes
2 answers

Making credentialed requests with Bokeh AjaxDataSource

I have a plot set up to use an AjaxDataSource. This is working pretty well in my local development, and was working as deployed in my Kubernetes cluster. However, after I added HTTPS and Google IAP (Identity-Aware Proxy) to my plotting app, all of…
Herbert Lee
  • 57
  • 1
  • 7
0
votes
1 answer

Failed to authenticate to Cloud IAP Backend from Cloud Tasks HTTP Request

I'm trying to use Cloud Tasks HTTP Requests to reach a Kubernetes endpoint behind an HTTPS Load Balancer protected by Cloud IAP. The endpoint works using any Gsuite company account as it should be but when the Cloud Task executes this is the Cloud…
Federico Ferri
  • 21
  • 1
  • 4
0
votes
2 answers

Error accessing a IAP resources when authenticating from a service account - 502 server error

We are trying to implement server to server authentication and access an IAP resource per documentation here. url = "https://project-name-B.appspot.com" # This is the IAP resource. This application is hosted in a different project. Lets call this…
Jack tileman
  • 469
  • 5
  • 14
0
votes
1 answer

Identity Aware Proxy(IAP) for Google Cloud endpoints OpenAPI

We have an application (say App-B) that is developed in Python 3.7 standard environment. This application will be accessed only by another project (application) that is part of GAE. Do we need to expose the App-B using Google Cloud endpoints to…
Jack tileman
  • 469
  • 5
  • 14
0
votes
1 answer

Failed to turn on/off IAP, Failed to update App Engine resource

When I want to use IAP with app engine, it failed with the issue: Failed to turn on/off IAP Failed to update App Engine resource. Tracking number: xxxxxxxxxxxx I restart IAP, still have this problem.
Allen
  • 77
  • 5
0
votes
1 answer

Why is Google IAP putting double-digits request cookies in my headers?

I have an app running on Google app engine (Flask, python 3, flexible environment) using the Identity-Aware proxy to allow everyone in our organization (which uses GSuite) to control access. Recently we've been getting 413 errors. When I looked at…
aaymeloglu
  • 1
  • 3
0
votes
1 answer

Google Cloud - strange response from IAP.GetIamPolicy API

I'm doing a POST to https://iap.googleapis.com/v1/projects/MY_PROJECT_ID/iap_web:getIamPolicy with an empty body as the documentation specifies. The API response is an HTTP 200 with the body simply being {"etag": "ACAB"} What does this mean? What…
Robert Levy
  • 27,992
  • 6
  • 59
  • 93
0
votes
1 answer

Does BackendConfig override the console when configuring IAP for a HTTPS resource?

I have an API protected by IAP on GCP which is configured via a backendconfig. It works fine. As well as turning IAP on/off via backendconfig, you can do the same via the console UI. If my backendconfig says IAP is enabled, then I disable it using…
insano10
  • 103
  • 2
  • 6
0
votes
1 answer

GKE: Identity-aware proxy > L7 load balancer > Custom host and path rules > Error code 11

I am using GKE Identity-aware proxy > L7 load balancer > Custom host and path rules. It works fine for the root-path. But it does not work for custom paths. apiVersion: extensions/v1beta1 kind: Ingress metadata: name: basic-ingress annotations: …
Saad Bin Shahid
  • 304
  • 3
  • 14
0
votes
1 answer

How do you programmatically add members to a single Google IAP access list?

I have 2 terraformed/k8s-yaml services that have IAP enabled. In order to maintain the member access list between infra refreshes (when the load balancers get destroyed and so the access list gets wiped) I have assigned the IAM role 'IAP-secured Web…
insano10
  • 103
  • 2
  • 6
0
votes
1 answer

How can I get a user's Google account photo using IAP and the People API? (NodeJS preferred)

I have an application that uses Google Cloud IAP to authenticate users. IAP requires the user to authenticate using their Google account, and then headers are passed to the application afterwards that identify that user (user id, user email, and a…
Daniel Fullerton
  • 123
  • 1
  • 10
0
votes
1 answer

Forcing password on login with IAP and restrict domain

I've set up a Django/python web application running on Google Cloud Platform's Kubernetes Engine pods, and secured by GCP's Identity-Aware Proxy. It all works great, but there are two things I'm not sure how to accomplish. 1) How can I restrict the…
Furbeenator
  • 7,322
  • 4
  • 40
  • 51
0
votes
1 answer

How to authenticate with web services on App Engine

I have a RESTful service running on GCP's App Engine which is secured by IAP. I'd like to invoke those methods from a web app but not sure how to set up authentication. The web app is written in TypeScript / Angular. Any guidance/examples would be…
Dandan
  • 489
  • 2
  • 9
1 2 3 4 5 6
7
8