Cloud IAP
Identity-Aware Proxy
認証基盤
Google ID, Identity Platform (SAML, OIDC を利用できる) バックエンド
GAE, Cloud Run (Serverless NEG), GCE, GKE
機能
認可
Audit Log
code:terraform
resource "google_project_iam_audit_config" "iap_audit_logging" {
service = "iap.googleapis.com"
audit_log_config {
log_type = "ADMIN_READ"
}
audit_log_config {
log_type = "DATA_WRITE"
}
audit_log_config {
log_type = "DATA_READ"
}
}
署名付きヘッダ