I'm looking for a solution to have a gateway to serverless on GCP with an Authorization/ Authentication made by IAM but didn't find a perfect solution to it.
The idea's to have these gateway managing endpoints from APIs on GCP Functions, Cloud Run and App Engine using Bearer $TOKEN generated by gcloud auth print-identity-token command. Also, needed an IAP integration to manage access by allowing a Gmail domain like, allow access to all @company.com users.
First I tried API Gateway but it's not possible to invoke the endpoints without a signed token with SA private key and also don't have IAP integration. Then, I tried HTTPS Load Balancer and successfully got programmatic access but not IAP since it doesn't have integration with Cloud Functions.
Is there another possibility or the next step it's to try to do this API Gateway using Kong or Nginx?
Thanks in advance for the help.
