Backend DevelopmentGolangHow do I authenticate to GCP using an uploaded (not generated) service account key?How do I authenticate to GCP using an uploaded (not generated) service account key?
php editor Strawberry will introduce you in detail how to use the uploaded service account key to authenticate Google Cloud Platform (GCP). Authentication is a very important step in the process of using GCP, and the service account key is the key to authentication. This article will explain to you how to upload the service account key and authenticate it correctly so that you can smoothly use various functions and services of GCP. Whether you are new to GCP or have some experience, this article will provide you with useful guidance and tips to ensure that you can complete the authentication process with ease. By reading this article, you will learn the steps and considerations for uploading service account keys, and how to correctly use these keys for authentication in GCP.
Question content
I am writing a service that requires different tenants to access GCP services. My microservices will be running on different hosts (no GCP). One of the limitations I'm facing is using a service account key to authorize api calls. The second constraint is that my microservice is responsible for generating the key pair for the service account and sharing the public key with the tenants so that they can upload it to their service account.
My current problem is that I can't find any documentation that explains how to authenticate to the GCP golang library using the key pair I have. All the documentation I've read always addresses service account key authentication, assuming that you will let GCP generate the key pair for you, and that you already have a json file with all the details you need.
Documents I have reviewed:
- https://cloud.google.com/docs/authentication/client-libraries#adc - https://cloud.google.com/docs/authentication#service-accounts - https://cloud.google.com/docs/authentication/provide-credentials-adc#local-key - https://github.com/GoogleCloudPlatform/golang-samples/blob/main/auth/id_token_from_service_account.go
Google Libraries uses a mechanism called "Application Default Credentials" that allows all of its libraries to find credentials for authentication. Specifically, in this case, the ADC always requires the json file to get the details of the credentials.
The json file looks like this:
<code>{
"type": "service_account",
"project_id": "my-project",
"private_key_id": "1ed3aae07f98f3e6da78ad308b41232133d006cf",
"private_key": "-----BEGIN PRIVATE KEY-----\n...==\n-----END PRIVATE KEY-----\n",
"client_email": "<EMAIL HERE>",
"client_id": "1234567890102",
"auth_uri": "<GOOGLE AUTH URI HERE>",
"token_uri": "<GOOGLE TOKEN URI HERE>",
"auth_provider_x509_cert_url": "<SOME GOOGLE URL HERE>",
"client_x509_cert_url": "<MORE GOOGLE URL HERE>",
"universe_domain": "googleapis.com"
}
</code>
So my question is, how do I build this json file from the generated key pair? If this is not possible (GCP limitation), then why am I able to upload the key pair? Can anyone point me to an example to help me resolve this situation?
Any help is greatly appreciated
I've reviewed all GCP official documentation, API reference, and Github script examples. None of them referenced the uploaded service account key
Workaround
It took me a while to get back to this issue. Thanks to @guillaume-blaquiere's answer, I started testing with the minimal required files.
Finally came up with this:
{
"type": "service_account",
"private_key": "<Your generated private_key.pem>",
"client_email": "<service account email>",
}
These are the minimum properties required by the Google SDK to successfully authenticate to GCP
The private key must be the same one used to generate the public key uploaded to the GCP service account.
As far as golang code is concerned, you can put this information into a structure and then parse the structure into json:
type JSONFile struct {
Type string `json:"type"`
PrivKey []byte `json:"private_key"`
Email string `json:"client_email"`
}
Then:
file := JSONFile{
Type: "service_account",
PrivKey: "<PK bytes here>",
Email: "<a href="https://www.php.cn/link/89fee0513b6668e555959f5dc23238e9" class="__cf_email__" data-cfemail="7d0e180f0b141e18501c1e1e120813095018101c14113d1a1e0d531e1210">[email protected]</a>",
}
result, err := json.Marshal(file)
if err != nil {
panic(1)
}
credentials, err := google.CredentialsFromJSON(context.Background(), result, secretmanager.DefaultAuthScopes()...)
if err != nil {
panic(1)
}
projectsClient, err := resourcemanager.NewProjectsClient(context.Background(), option.WithCredentials(credentials))The above is the detailed content of How do I authenticate to GCP using an uploaded (not generated) service account key?. For more information, please follow other related articles on the PHP Chinese website!
Golang vs. Python: The Pros and ConsApr 21, 2025 am 12:17 AMGolangisidealforbuildingscalablesystemsduetoitsefficiencyandconcurrency,whilePythonexcelsinquickscriptinganddataanalysisduetoitssimplicityandvastecosystem.Golang'sdesignencouragesclean,readablecodeanditsgoroutinesenableefficientconcurrentoperations,t
Golang and C : Concurrency vs. Raw SpeedApr 21, 2025 am 12:16 AMGolang is better than C in concurrency, while C is better than Golang in raw speed. 1) Golang achieves efficient concurrency through goroutine and channel, which is suitable for handling a large number of concurrent tasks. 2)C Through compiler optimization and standard library, it provides high performance close to hardware, suitable for applications that require extreme optimization.
Why Use Golang? Benefits and Advantages ExplainedApr 21, 2025 am 12:15 AMReasons for choosing Golang include: 1) high concurrency performance, 2) static type system, 3) garbage collection mechanism, 4) rich standard libraries and ecosystems, which make it an ideal choice for developing efficient and reliable software.
Golang vs. C : Performance and Speed ComparisonApr 21, 2025 am 12:13 AMGolang is suitable for rapid development and concurrent scenarios, and C is suitable for scenarios where extreme performance and low-level control are required. 1) Golang improves performance through garbage collection and concurrency mechanisms, and is suitable for high-concurrency Web service development. 2) C achieves the ultimate performance through manual memory management and compiler optimization, and is suitable for embedded system development.
Is Golang Faster Than C ? Exploring the LimitsApr 20, 2025 am 12:19 AMGolang performs better in compilation time and concurrent processing, while C has more advantages in running speed and memory management. 1.Golang has fast compilation speed and is suitable for rapid development. 2.C runs fast and is suitable for performance-critical applications. 3. Golang is simple and efficient in concurrent processing, suitable for concurrent programming. 4.C Manual memory management provides higher performance, but increases development complexity.
Golang: From Web Services to System ProgrammingApr 20, 2025 am 12:18 AMGolang's application in web services and system programming is mainly reflected in its simplicity, efficiency and concurrency. 1) In web services, Golang supports the creation of high-performance web applications and APIs through powerful HTTP libraries and concurrent processing capabilities. 2) In system programming, Golang uses features close to hardware and compatibility with C language to be suitable for operating system development and embedded systems.
Golang vs. C : Benchmarks and Real-World PerformanceApr 20, 2025 am 12:18 AMGolang and C have their own advantages and disadvantages in performance comparison: 1. Golang is suitable for high concurrency and rapid development, but garbage collection may affect performance; 2.C provides higher performance and hardware control, but has high development complexity. When making a choice, you need to consider project requirements and team skills in a comprehensive way.
Golang vs. Python: A Comparative AnalysisApr 20, 2025 am 12:17 AMGolang is suitable for high-performance and concurrent programming scenarios, while Python is suitable for rapid development and data processing. 1.Golang emphasizes simplicity and efficiency, and is suitable for back-end services and microservices. 2. Python is known for its concise syntax and rich libraries, suitable for data science and machine learning.
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
Dreamweaver Mac version
Visual web development tools
ZendStudio 13.5.1 Mac
Powerful PHP integrated development environment
SAP NetWeaver Server Adapter for Eclipse
Integrate Eclipse with SAP NetWeaver application server.
DVWA
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software
