Can I restrict access to specific Google Cloud IAP backends?
I'm protecting a number of backend services using Cloud IAP.
When a project member wants access to these services, I give them the IAP-secured Web App User permission and they then have access to all IAP protected backends.
Other than checking the authentication headers in my app, is there any way to limit a user's access to only certain backends?
Solution
You should be able to select an individual backend service (or multiple services) in the IAP UI, by checking the checkbox next to that service. Once you do that, the IAM panel on the right will grant access to just that service.
![Screenshot of IAP UI showing the checkboxes[1]](https://i.sstatic.net/dydtx.png)
- How do I keep a long-running background task from stopping on Google Cloud Run?
- GCP Cloud SQL Proxy times out: connectex
- How to automatically back up and version BigQuery code such as stored procs?
- BigQuery Policy Tags: possible as infra as code?
- How to use GCP Translation API to process a table in BigQuery?
- How to enable DML statements on BigTable via BigQuery?
- ScikitLearn model giving 'LocalOutlierFactor' object has no attribute 'predict' Error
- Error: 10: Developer console is not set up correctly (Not Using Firebase) (One Tap sign-up)
- Get author of gcp cloud run jobs
- Run cloud-build triggers with Node.js library
- How to define period of time to delete TTL firestore Google cloud
- Sync github repository with google cloud storage bucket
- Is there a workaround for the Firebase Query "IN" Limit to 10?
- Uncaught (in promise) Error: [403 ] You do not have permission to access tuned model tunedModels/thefine-tuned-model-f64sf654sf
- How to set retry policy through golang package for google pubsub
- Google Cloud MySQL Truncating Timestamps from CSV Import
- Rename a folder in GCS using gsutil
- How to generate AdminSDK (ADC) credentials for firebase auth using terraform?
- Access Denied Error when Uploading Files from VM to Cloud Storage
- My android app doesn't recognize my adapter. No adapter attached skipping layout
- How to remove a value from an array within a batched write in Firestore?
- HTTPS Load balancer in front of Cloud Run
- Can't Access GCP Docker container
- Google Firebase: How do I "work around" an invalid "issuer" value in my client's OIDC discovery document?
- Firebase Phone authentication test num working but real phone num showing [BILLING_NOT_ENABLED]
- How do I list the roles associated with a gcp service account?
- Cannot connect to kafka hosted in cloud from spring boot application
- Downloading google calendar event attachment
- How to include DeltaLake Files from GCS to BigQuery
- Google Cloud translate JSON file