user3205999
Reputation: 187
Cloud Functions returns 403 error also with Cloud Functions Invoker permissions
Within GCP:
- I created a function in Google Cloud Functions.
- I want to invoke that function from Google Workflows.
- I added a service account with "Cloud Functions Invoker" permissions.
- I created a workflow in Google Workflows, it uses the service account with "Cloud Functions Invoker" permissions that I added before.
- I run the workflow... it fails with "HTTP server responded with error code 403".
Why does it give 403 error if I'm using a service account with "Cloud Functions Invoker" permissions? If I disable authentication for the function it works, but I need authentication because it's not a public API.
Upvotes: 4
Views: 2347
Answers (1)
user3205999
Reputation: 187
This must be added in the workflow code:
auth:
type: OIDC
See https://cloud.google.com/workflows/docs/calling-run-functions?authuser=1#add_auth_info
Upvotes: 8
Related Questions
- 403 Response from Google Cloud Functions
- Google Cloud Function Authorization Failing
- Cloud Function with Cloud Function Invoker rights gets 403 status
- Cloud Function returning 403 response
- Google Cloud Function 403 for internal authenticated requests
- PERMISSION_DENIED 403 error when triggering HTTP Cloud Function from Cloud Tasks
- Cloud Functions calling another Cloud Functions faces "Access is forbidden"
- Google cloud function permission problems
- Cloud Function Permissions (403 when invoking from another cloud function)
- Endpoint for Cloud Function returns 403 Forbidden