How to Call Google Cloud Service Account Authorization Without Oauth
This blog post discusses an alternative method for Google Cloud Service Account Authorization without using OAuth. The normal flow involves creating a self-signed JWT and authenticating it to request an OAuth token, which is then used to call Google APIs. However, the author prefers a more direct approach where the self-signed JWT is used directly to call Google APIs. This method eliminates the need for network authentication and refresh tokens, reducing overhead and potential errors. The post also covers issues with Google Cloud Storage when using this method and provides an updated JWT payload that includes a "scope" field instead of an "aud" field.
Company
Hookdeck
Date published
Aug. 12, 2022
Author(s)
Valérian Galliat
Word count
1034
Language
English
Hacker News points
None found.