Using Workload Identity Federation with Webhooks/Apps and Cloud Functions #37299
Replies: 2 comments
-
Hi there @uwehdaub and welcome to our community! Thank you for asking a great question 🙂 To get started, introduce yourself in our official introduction thread |
Beta Was this translation helpful? Give feedback.
-
🕒 Discussion Activity Reminder 🕒 This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions: 1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as 2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own. 3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution. Note: This dormant notification will only apply to Discussions with the Thank you for helping bring this Discussion to a resolution! 💬 |
Beta Was this translation helpful? Give feedback.
-
We are using Google Workload Identity Federation extensively in our GitHub workflows (e.g. to deploy to GKE).
For our GitHub Apps we don't see a possibility to setup something similar.
As a result we have to set on the Google Cloud Function to allow all incoming requests,
which means that we have to deactivate the security layer given by IAM.
Is it possible to setup something like WIF, so that we can configure in Google only to allow calls to Functions coming from GitHub?
Beta Was this translation helpful? Give feedback.
All reactions