This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
This site is in read only until July 22 as we migrate to a new platform; refer to this community post for more details.
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

API Gateway (with API KEY) + Cloud Function (requires authentication) - Valid Use Case?

Posted on 03-24-2023 09:00 PM
vbgcp
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Can someone suggest if the below is a valid use case :

1. Create a Cloud Function with "Require authentication"

2. Create a API Gateway with API Key

3. The Cloud Function created in Point No 1 will be a end point in the gateway

The reason I am suggesting is, I do NOT want the Cloud Function with option "Allow unauthenticated invocations". This is because, even if I can use a Gateway (with API Key) to call the cloud function, if anyone knows the Trigger URL for the Cloud Function, they can call it directly by bypassing the gateway.

Hence, I do not want anyone to directly call the Cloud Function

I want everyone to use the Gateway (with API Key) to call the Cloud Function.

Any thoughts?

Solved Solved
0 3 2,655
Topic Labels
Jump to Solution
0 Likes
Reply
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
christianpaula
Former Googler
Reply posted on --/--/---- --:-- AM

Hi @vbgcp,

Welcome back to Google Cloud Community!

Yes, this is a valid use case. By creating a Cloud Function with "Require authentication" and using an API Gateway with an API Key, you can restrict access to your Cloud Function and ensure that only authorized clients can invoke it.

Using an API Gateway with an API Key provides an extra layer of security, as it ensures that only clients with a valid API Key can access your Cloud Function. By using an API Gateway, you can also control access to your Cloud Function by setting up various authorization and authentication mechanisms.

Overall, this approach can help you ensure that your Cloud Function is secure and that only authorized clients can invoke it.

Thanks

View solution in original post

Jump to Solution
0 Likes
Reply
3 REPLIES 3

Posted on --/--/---- --:-- AM
christianpaula
Former Googler
Reply posted on --/--/---- --:-- AM

Hi @vbgcp,

Welcome back to Google Cloud Community!

Yes, this is a valid use case. By creating a Cloud Function with "Require authentication" and using an API Gateway with an API Key, you can restrict access to your Cloud Function and ensure that only authorized clients can invoke it.

Using an API Gateway with an API Key provides an extra layer of security, as it ensures that only clients with a valid API Key can access your Cloud Function. By using an API Gateway, you can also control access to your Cloud Function by setting up various authorization and authentication mechanisms.

Overall, this approach can help you ensure that your Cloud Function is secure and that only authorized clients can invoke it.

Thanks

Jump to Solution
0 Likes
Reply

Posted on --/--/---- --:-- AM
vbgcp
Bronze 1
Bronze 1
In response to christianpaula
Reply posted on --/--/---- --:-- AM

Thank you. Understood and Agreed.

Jump to Solution
0 Likes
Reply

Posted on --/--/---- --:-- AM
dauntles
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hello @christianpaula,

is there a way to set "Require authentication" in function code like with vpcConnector?

Thanks in Advance!

Jump to Solution
0 Likes
Reply
Top Solution Authors
View all