Reputation: 47
Google Cloud IAP: How to access App Engine API (protected by IAP) from a web application hosted on a separate Firebase project?
This is my setup
Multiple Python APIs hosted on App Engine Angular client application hosted on Firebase. Users accessing the web application are authenticated by Firebase Auth.
When trying to send requests to the APIs hosted on App Engine from the application, an error is encountered.
401 Unauthorized: Invalid IAP credentials: empty token
Tried following multiple online articles but there were a few problems I discovered.
- The Firebase web application and the App Engine APIs are on separate Google Cloud projects
- Majority solutions have the web application itself deployed on App engine and hence the OAuth process for authenticating end users is pretty straightforward. My project uses Firebase authentication to allow users to access my Firebase hosted webapp. Completely disconnected from IAP.
Is there any way I can use a service account to programmatically authenticate my Firebase web app as a secure IAP user and access the APIs?
Upvotes: 2
Views: 1324
Answers (1)
Reputation: 6263
Haven't tried this...
You can programmatically make calls to an IAP secured endpoint using an OIDC token. See documentation
So maybe your flow should be -
a) Users login to your Firebase App (follow whatever authentication method you like).
b) Then you programmatically make calls to the IAP app (following the link above) on behalf of the users
Upvotes: 1
Related Questions
- Visualizing R Function Dependencies
- R: How to Efficiently Visualize a Large Graph Network
- How to visualize a large network in R?
- Visualize time series in a plot
- How to visualize large data frame in network form in R?
- How to create a list of Networks in R based on Time Series Data
- Create network graph
- Plotting several time series graphs in R
- Graphing a network in igraph or other packages in R that has each node dependent on covariates?
- Simple interactive visualization of a network using R