Summary
1. Summary
We began the discussion by reviewing authorization with Identity and Access Management (IAM). IAM lets you manage access control by defining who has what access for which resource. Application access to Google Cloud APIs may be controlled using service accounts. Your application assumes the identity of the service account to invoke Google Cloud APIs. You can create one or more service accounts to restrict access to different resources in your application. You also learned about risks associated with service account keys. A diagram helped explain how to decide which authentication method is best for your application. Identity-Aware Proxy, or IAP for short, lets you control access to your application. It verifies the user’s identity and checks whether that user should be allowed to access the application. End-users simply use an internet-accessible URL to access IAP-secured applications. No VPN is required! Firebase Authentication and Identity Platform let you add application users, and we discussed the differences between them. Finally, we looked at Secret Manager, which can help you securely store sensitive information for use in your applications.2. Let's practice!
Create Your Free Account
or
By continuing, you accept our Terms of Use, our Privacy Policy and that your data is stored in the USA.