Serve content from a Google Cloud Storage bucket using Identity-Aware Proxy (IAP)

About

Asked 25/9, 2018 at 19:55 Answered 3/2, 2021 at 17:7

google-cloud-platform google-cloud-storage google-iap

I have some content in a GCS bucket:

$ gsutil ls gs://my-bucket
index.html

I'd like to serve this behind OAuth using Identity-Aware Proxy (IAP). I'm following these instructions.

I've created a load balancer and and "backend bucket" like so:

On the Identity-Aware Proxy page, however, I do not see my load balancer listed:

Is it possible to use IAP with a backend bucket?

Correggio answered 25/9, 2018 at 19:55 Comment(0)

This isn't supported at the moment. The policy is applied per backend, not for the load balancer as a whole (so for example, yoursite.com/admin can be more restricted than yoursite.com/public). However only backend services (ie GCE/GKE) are supported, but not backend buckets.

There is an open feature request for backend bucket IAP support.

Raveaux answered 26/9, 2018 at 18:30 Comment(0)

I have added a couple of changes to gcs-proxy.

so basically you can put it in cloudrun behind GLB with Identity-Aware Proxy (IAP) and serve static sites from private GCS.

here is the fork https://github.com/mike-sirs/gcsproxy.

Hrutkay answered 3/2, 2021 at 17:7 Comment(0)

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags