|
|
|
|
|
|
by ahmedtd
1334 days ago
|
|
|
Not really the point of your comment, but... The GKE equivalent of EKS IRSA is GKE Workload Identity. It's pretty much the same user experience: * Enable Workload Identity on your cluster * Create a GCP service account * Grant your Kubernetes service account permission to act as the GCP service account. It's a bit more seamless because you don't need to upgrade your client libraries. Instead there is an on-node metadata server that provides access tokens to workloads. Disclosure: I work on this |
|
|