Hi
we are using https://github.com/GoogleCloudPlatform/professional-services/tree/main/tools/spiffe-gcp-proxy
to setup workload identity provider.
To attest on-prem workload and establish a connectivty to GCP to fetch tokens .
Unfortunately the steps are not clear w.r.t Spiffe-proxy installation and further steps on attesting workloads.
When I try to run the proxy binary with required parameters, it runs in background and I tried to fetch token using
$curl -v "http://metadata.google.internal/computeMetadata/v1/instance/service-accounts/workload-identity@dev-data-01.iam.gserviceaccount.com/token" -H "Metadata-Flavor: Google"
It returns
Query:
1.How we know following steps are executed without errors
2.How to implement this entire setup in an automated way, like github action etc.,
Any help would be much appreciated!
Hi
we are using https://github.com/GoogleCloudPlatform/professional-services/tree/main/tools/spiffe-gcp-proxy
to setup workload identity provider.
To attest on-prem workload and establish a connectivty to GCP to fetch tokens .
Unfortunately the steps are not clear w.r.t Spiffe-proxy installation and further steps on attesting workloads.
When I try to run the proxy binary with required parameters, it runs in background and I tried to fetch token using
$curl -v "http://metadata.google.internal/computeMetadata/v1/instance/service-accounts/workload-identity@dev-data-01.iam.gserviceaccount.com/token" -H "Metadata-Flavor: Google"
It returns
Query:
1.How we know following steps are executed without errors
2.How to implement this entire setup in an automated way, like github action etc.,
Any help would be much appreciated!