#service-account #gcp #google

gcp_auth

Google cloud platform (GCP) authentication using default and custom service accounts

30 releases

0.11.0 Mar 14, 2024
0.10.0 Dec 19, 2023
0.9.0 Jun 30, 2023
0.7.6 Mar 27, 2023
0.1.4 Jul 2, 2020

#27 in Authentication

Download history 11088/week @ 2023-12-06 11755/week @ 2023-12-13 11567/week @ 2023-12-20 3696/week @ 2023-12-27 8270/week @ 2024-01-03 7086/week @ 2024-01-10 8755/week @ 2024-01-17 13884/week @ 2024-01-24 9261/week @ 2024-01-31 12843/week @ 2024-02-07 8906/week @ 2024-02-14 9248/week @ 2024-02-21 10622/week @ 2024-02-28 13177/week @ 2024-03-06 17619/week @ 2024-03-13 8175/week @ 2024-03-20

51,847 downloads per month
Used in 13 crates (11 directly)

MIT license

45KB
758 lines

GCP Auth

Crates.io Documentation MIT licensed

GCP auth provides authentication using service accounts Google Cloud Platform (GCP)

GCP auth is a simple, minimal authentication library for Google Cloud Platform (GCP) providing authentication using service accounts. Once authenticated, the service account can be used to acquire bearer tokens for use in authenticating against GCP services.

The library supports the following methods of retrieving tokens in the listed priority order:

  1. Reading custom service account credentials from the path pointed to by the GOOGLE_APPLICATION_CREDENTIALS environment variable. Alternatively, custom service account credentials can be read from a JSON file or string.
  2. Look for credentials in .config/gcloud/application_default_credentials.json; if found, use these credentials to request refresh tokens. This file can be created by invoking gcloud auth application-default login.
  3. Use the default service account by retrieving a token from the metadata server.
  4. Retrieving a token from the gcloud CLI tool, if it is available on the PATH.

For more detailed information and examples, see the docs.

This crate does not currently support Windows.

Simple usage

The default way to use this library is to get instantiate an AuthenticationManager. It will find the appropriate authentication method and use it to retrieve tokens.

use gcp_auth::AuthenticationManager;

let authentication_manager = AuthenticationManager::new().await?;
let scopes = &["https://www.googleapis.com/auth/cloud-platform"];
let token = authentication_manager.get_token(scopes).await?;

License

Parts of the implementation have been sourced from yup-oauth2.

Licensed under MIT license.

Dependencies

~18–32MB
~599K SLoC