Skip to content

Set Access Control for HTTP Functions (v1) #921

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
Aug 2, 2021
Merged

Set Access Control for HTTP Functions (v1) #921

merged 9 commits into from
Aug 2, 2021

Conversation

@colerogers
Copy link
Contributor

@colerogers colerogers commented Jul 28, 2021
edited
Loading

Description

Creating a way for customers to explicitly set the access control on HTTP triggered functions. The access control is set at the function level, so different functions can have different access policies. The customer can choose to set access control to public, private, or a custom service account. Access control is set in the runWith() function by setting the property invoker. To handle multiple service accounts, invoker can accept an array of strings.

The corresponding firebase-tools PR is here

Code sample

export const myHttpFunc = runWith({invoker: "private"}).onRequest((req, res) => { res.send({hello: "private"}); });

@google-cla google-cla bot added the cla: yes label Jul 28, 2021
@colerogers colerogers requested a review from joehan July 28, 2021 17:47
@colerogers colerogers changed the title Set Access Control for HTTP Functions Set Access Control for HTTP Functions (v1) Jul 29, 2021
@colerogers colerogers mentioned this pull request Jul 29, 2021
Merged
@colerogers colerogers requested a review from inlined July 29, 2021 20:13
@colerogers colerogers self-assigned this Jul 29, 2021
joehan
joehan approved these changes Jul 29, 2021
View reviewed changes
Copy link
Contributor

@joehan joehan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some minor feedback, but this mostly LGTM

@colerogers colerogers merged commit 63a0cc4 into master Aug 2, 2021
@inlined inlined deleted the colerogers.http-access-control branch August 10, 2021 16:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@joehan joehan joehan approved these changes

@inlined inlined inlined approved these changes

Assignees

@colerogers colerogers

Labels

cla: yes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@colerogers @inlined @joehan