Reputation: 2631
Using a load balancer that requires oAuth to protect my backend application
I have a backend service, which I don't want to be expose, and also, just the employees that uses Gsuite oAuth should access.
Instead of exposing the backend and add the logic of oauth in it, I looked at the vouch-proxy project, which fits me very well (a proxy that redirects unauthenticated traffic to oauth login page and then, when a valid token is passed, it's redirect to the backend.
Before using this vouch proxy, do GCP has something built-in for it? Or another kind of setup that my backend service is not exposed?
Upvotes: 0
Views: 1103
Answers (1)
Reputation: 9810
Google Cloud provides the Identity-Aware Proxy (IAP) that would precisely fit your needs since it's integrating well with G Suite domain and can sit in front of your Load-Balancer.
Upvotes: 4
Related Questions
- Serverless API Gateway on GCP
- How to restrict access to an external load balancer's endpoint
- Google cloud load balancer with external server
- How to use Load Balancers in GCP to point to backend port
- How to protect my http-triggered GCP Function with oauth/jwt?
- GCP: Allowing Public Ingress Web Traffic from the Load Balancer ONLY
- Load balanced service serving both internal and external users GCP
- Cloud IAP and three-legged OAuth
- Google Cloud Platform Load Balancer and CORS
- Is it possible to set Load Balancing to access the resource outside GCP?