Questions tagged [workload-identity]
The workload-identity tag has no usage guidance.
workload-identity
83
questions
0
votes
0
answers
28
views
Issue with using custom Image from Google Artifact Registry to run Github workflow using Workload Identity Federation
I use Workload Identity Federation for keyless Authentication in my Workflow.
I have been trying to use my custom image in my github workflow in the following way;
jobs:
setup_and_authenticate:
...
0
votes
0
answers
37
views
Trigger GCP Vertex AI from EKS pod using Workload Identity Federation
I have a project in GCP which interacts with Vertex AI (specifically with gemini-1.5-flash-001 model. I've used the default "Get Code" option in the Vertex AI studio and want to use this ...
- 51
1
vote
1
answer
162
views
How can I use workload identity pooling to succesfully push docker images to GCP?
I am setting up a service which I want to deploy to Cloud Run from Github Actions. However although the authentication action step is successful:
- name: Authenticate to Google Cloud
id: auth
uses:...
- 21
0
votes
1
answer
119
views
How to connect to SQL Server using workload identity in AKS using .NET framework?
When I am using work load identity to connect to SQL Server in AKS using .NET framework, I am getting this error
login failed for identity principal user
I excepted to be able to connect ...
0
votes
0
answers
20
views
Empty response for getting google auth credentials for aws workload identity federation
The code below runs on an AWS EKS container and the service account has a WIF pool configured.
def get_gcp_credentials_via_aws_federation(
service_account: str,
audience: str,
scopes: List[str] = [&...
- 1,647
0
votes
2
answers
106
views
Crossplane ProviderRevision and automatically handling Workload Identities
There exists plenty of documentation on how to handle IAM with GCP and Crossplane, complete with nice details on exactly what commands to run to tie them together with workload identity.
My issue is ...
0
votes
0
answers
50
views
Does the Firebase Admin SDK support workload identity federation ?
Recently, we made the service account key and saw a box that said
Service account keys could pose a security risk if compromised. We recommend that you avoid downloading service account keys and ...
0
votes
1
answer
184
views
how do I log on my azure cosmosdb for mongodb from aks through my workload identity?
I have a private Azure Cosmos DB for MongoDB account (RU) together with a private AKS cluster. I want to access the MongoDB server from the AKS cluster through a workload identity. I followed the ...
- 1,241
0
votes
2
answers
102
views
Terraform unable to run after converting service connection to workload identity
I have had my service connection converted to workload identity and now I'm getting these authorization errors:
I added in the use_oidc = true option as per the documentation:
- https://registry....
- 23
0
votes
1
answer
58
views
Forbidden Error with Google Cloud Storage When Using Tokens from Workload Identity Federation with Descope
I'm implementing Workload Identity Federation using Descope as the Identity Provider (IdP) to access Google Cloud Storage (GCS). I've successfully exchanged a Descope JWT for a Google access token but ...
2
votes
2
answers
2k
views
Azure Pipelines: Logging in using Workload Identity Federation
In my CI-pipeline I need to log in to azure key vault to check that my code, which handles keys, works correctly.
I have created a Workload Identity, called my_workload_identity, and given it reader-...
- 109
1
vote
0
answers
220
views
Running Azure Function in AKS with Workload Identity and Eventhub Trigger
I am trying to run azure function in Azure Kubernetes Service(AKS) with eventhub trigger and workload identity. I was able to run the function successfully in AKS with managed identity, now I want to ...
- 14k
-1
votes
1
answer
321
views
Unable to connect to Azure SQL from Kubernetes (AKS) web app container using workload identity
I have an Azure Kubernetes cluster hosting a web app which I want to talk to an Azure SQL database.
I have verified that the connection to SQL works fine when using a password-based connection string ...
- 4,223
0
votes
1
answer
581
views
Issues generating IMDS access token from AKS Pod using workload identity
I'm having some issues when generating an access token from within a pod in AKS with workload identity enabled.
I created the AKS cluster, the user-assigned managed identity, granted a Contributor ...
- 11
0
votes
1
answer
489
views
Access Google Artifact repository image from onprem K8S using Workload Identity Federation
I have set up K3S cluster (some bare metal k8s cluster) on my laptop. I am planning to setup Workload identity federation between this cluster and my GCP Artifact repository , so I will be able to ...
- 133