Stack Overflow
Stack Overflow

Questions tagged [google-iap]

Questions related to Google Cloud Identity Aware Proxy

134 questions
3
votes
5 answers

Receiving HTTP 401 when accessing Cloud Composer's Airflow Rest API

I am trying to invoke Airflow 2.0's Stable REST API from Cloud Composer Version 1 via a Python script and encountered a HTTP 401 error while referring to Triggering DAGS with Cloud Functions and Access the Airflow REST API. The service account has…
Seng Cheong
  • 442
  • 3
  • 14
3
votes
1 answer

Service to service requests on App Engine with IAP

I'm using Google App Engine to host a couple of services (a NextJS SSR service and a backend API built on Express). I've setup my dispatch.yaml file to route /api/* requests to my API service and all other requests get routed to the default (NextJS)…
Matt Bise
  • 63
  • 1
  • 5
3
votes
1 answer

How to protect Google Cloud Functions with Identity-Aware-Proxy

I'm having trouble protecting my Google Cloud Function with the Identity-Aware-Proxy. I'm still getting the "You don't have access" screen after the OAuth Consent screen even though I've done all steps as I understood them from the documentation…
Simon Knittel
  • 1,730
  • 3
  • 15
  • 24
3
votes
1 answer

Service account request to IAP-protected app results in 'Invalid GCIP ID token: JWT signature is invalid'

I am trying to programmatically access an IAP-protected App Engine Standard app via Python from outside of the GCP environment. I have tried various methods, including the method shown in the docs here:…
rocklobster
  • 445
  • 1
  • 4
  • 8
3
votes
2 answers

Unable to enable CORS requests to a Google App Engine IAP

Signing in users with external identities from Safari and Brave is not working. The workaround for Safari is to disable Prevent cross-site tracking in the setting menu. There is another option using gcloud iap settings set as explained in…
Shi nik
  • 31
  • 1
3
votes
1 answer

Google Cloud Identity Aware Proxy over Corporate Proxy

Configured Google Cloud Identity Aware Proxy for the application. So far, I can ssh to it no problem, as long as I am not using corporate proxy. Tried over proxy (with IAP endpoint being in 'allow' list in corporate proxy), but it failed with SSL…
user2362699
  • 586
  • 6
  • 22
3
votes
1 answer

Using Salesforce Named Credentials Against Google IAP

Goal I have built a REST API that is running on Google App Engine, protected by Google Cloud IAP (Identity Aware Proxy). My goal is to use a Service Account to make requests to this API from Salesforce (using the External Services…
Adam Sherman
  • 159
  • 12
3
votes
2 answers

Connection to Compute Engine with No External IP Possible?

I am not sure if is a strange behavior of Google Compute Engine. I have a VM without External IP. Now, where I click the ssh button I can still connect to it and I see the log: External IP address was not found; defaulting to using IAP…
toto'
  • 1,325
  • 1
  • 17
  • 36
3
votes
1 answer

Google Pub/Sub push message not working for IAP enabled app engine

I am testing out a very basic Pub/Sub subscription. I have the push endpoint set to an App I have deployed through a Python Flex service in App Engine. The service is in a project with Identity-Aware Proxy enabled. The IAP is configured to allow…
Jefila
  • 131
  • 1
  • 11
3
votes
1 answer

Authenticate Google Composer http call task with IAP protected app

I have a setup where I have an app engine REST application and a Google composer / airflow DAG that has a task where it is supposed to fetch data from one of the endpoints of the app. The app is protected by IAP. I have added the service account…
Vee6
  • 1,527
  • 3
  • 21
  • 40
3
votes
1 answer

How do you implement role based authorisation after authenticating with Google Cloud IAP?

I have a service providing an API running in Google Cloud behind IAP. The authentication is working as expected to allow users access to the API. In order to lock down the API on a more granular level I would like to allow access to certain paths…
insano10
  • 113
  • 2
  • 6
3
votes
1 answer

Inconsistent - "The project id used to call the Google Play Developer API has not been linked in the Google Play Developer Console."

So here's the thing - I have a node.js backend server for my Android App. I am using the Google Play billing library, and using the backend to verify the purchase as google Docs recommend. Now, all the other answers out there regarding this error…
Jeff Padgett
  • 2,380
  • 22
  • 34
3
votes
1 answer

How to configure github webhook to Jenkins servers behind Google's Cloud IAP

Currently having Jenkins servers behind Google Cloud IAP (https://cloud.google.com/iap/) handling authentication and using Jenking GitHub plugin. How do I configure GitHub webhook to work with Google Cloud IAP? Whatever I configure in the webhook, I…
Diyan Y
  • 121
  • 4
3
votes
1 answer

Fine grained security with Google Cloud Identity Aware Proxy

The context is wanting to use Google IAP to secure access for a set of business and individual customers. There is a single central service running in the Google cloud which supports multiple customers and hence multiple non-overlapping security…
Richard Swan
  • 31
  • 2
3
votes
1 answer

How to get Google Sign-In for Websites to work with Identity Aware Proxy

I have a web site in google cloud. I use Identity-Aware Proxy (IAP) to protect it. When a request comes in IAP checks if I'm authorized and then responds with either if I'm authorized: the response from the resource I requested if not: a 302 or 401…
Erik I
  • 972
  • 1
  • 11
  • 28
1
2
3
8 9