gcp_auth
gcp_auth copied to clipboard
djc
Minimal authentication library for Google Cloud Platform (GCP)
When invoking Cloud Run endpoints, token needs to have audience of the endpoint url.
This triggers a background refresh of the token once the token has less than 60 seconds left before it expires. In addition, it re-works the refresh lock to be either...
We're seeing that refreshing tokens from outside of a GCP env is slow, often around 1 second for us. Because of this we'd like to get the refresh done in...
Mostly improving some optional parameters in the key formats The last commit makes some internal improvements. Feel free to accept or reject any individual commit.
This PR adds service account impersonation. It uses a generic `Box` to get the source token and then uses that token to refresh the impersonated account from the `service_account_impersonation_url`.
This PR supports parsing both formats in either the `GOOGLE_APPLICATION_CREDENTIALS` env variable or the `~/.config/gcloud/application_default_credentials.json` file. This is part 1 of the PRs addressing #56 For context see https://github.com/hrvolapeter/gcp_auth/pull/75#issuecomment-1683894661
Hi there, thanks for creating this nice package. Does it support all kinds of different key jsons. I tried to use the the json generated via `gcloud auth application-default login`...
Because `TokenProvider` is a trait (and not sealed), this is technically a breaking change. Since there's just been a breaking change a month ago, not sure if we want a...
First off, thanks djc for your work maintaining not only this crate but throughout the Rust HTTP/TLS ecosystem - your name comes up a lot and it's very much noticed...
In my company's application, we have created different GCP resources in different GCP projects, to allow us to more easily isolate what applications can access which services. We then wish...
