Uploaded image for project: 'Libcloud'
  1. Libcloud
  2. LIBCLOUD-625

GCE: When used on a GCE instance, auth should use metadata tokens

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Compute
    • Labels:
      None
    • Environment:

      Google Compute Engine

      Description

      Currently, the GCE driver only supports authorization from a perspective that code is executed "outside" of the GCE environment. However, if code is executed on an instance running "inside" GCE, it is possible to handle authorization with GCE's internal metadata service for an access token.

      When an instance is created with appropriate service account scopes, this access token can be used to provide authorization to access the corresponding Google Cloud services.

      https://cloud.google.com/compute/docs/authentication

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              erjohnso Eric Johnson
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: