Vinicius Carvalho
Reputation: 4156
Service Access on Container Engine
Hi is there a best practice to access google cloud services such as bigtable and pubsub when running services inside kubernetes? Or should I just place the json credentials available for each pod during deployment?
Regards
Upvotes: 2
Views: 197
Answers (1)
Robert Bailey
Reputation: 18230
When creating your cluster (or node pool) you can set the scopes (which are permissions) that will be applied to each of the VMs. For example, to allow access to pubsub, you could set either https://www.googleapis.com/auth/pubsub or https://www.googleapis.com/auth/cloud-platform (the second one has much broader permissions so if you only want pubsub you should use the first to stick to the principle of least privilege).
Upvotes: 2
Related Questions
- How can I give my GKE deployed application access to Google Pub/Sub?
- How to access google kubernetes engine service from a client
- Google container engine
- Google container engine, direct access to pods
- Google container connect to service
- How to access google cloud instances from kubernetes containers
- Google Cloud Platform: cannot access Pubsub from Container Engine
- How to access service in google container engine from google compute engine instance
- Accessing Kubernetes API on Google Container Engine
- Can my VM directly access "services" in the google container engine?