|
|
|
|
|
|
by Ironlink
1418 days ago
|
|
|
I wish they would reuse the pattern of Cloud SQL where you can get temporary access without manually handling the Authorized Networks setting. The Cloud SQL API lets you exchange your API access token for a short lived TLS client certificate. This is done client side by things like cloudsql-proxy[1] and the cloud-sql-jdbc-socket-factory java library[2]. This way, I can access my Cloud SQL instance from my IDE, even though my list of authorized networks is empty. I feel like the gke-gcloud-auth-plugin cloud do something very similar. [1]: https://github.com/GoogleCloudPlatform/cloudsql-proxy [2]: https://github.com/GoogleCloudPlatform/cloud-sql-jdbc-socket... |
|
|