Skip to content

signalfx/gcp_workload_identity_federation

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
cli
cli
 
 
terraform
terraform
 
 
README.md
README.md
 
 
realms.json
realms.json
 
 

Repository files navigation

Workload Identity Federation Setup Utils

This repository provides tools to set up Workload Identity Federation in Google Cloud Platform (GCP) for granting access to Splunk integrations. Two setup approaches are available based on your requirements:

Permissions

To create WIF resources you need the following permissions:

iam.googleapis.com/workloadIdentityPoolProviders.create
iam.googleapis.com/workloadIdentityPoolProviders.delete
iam.googleapis.com/workloadIdentityPoolProviders.undelete
iam.googleapis.com/workloadIdentityPoolProviders.update
iam.googleapis.com/workloadIdentityPools.create
iam.googleapis.com/workloadIdentityPools.delete
iam.googleapis.com/workloadIdentityPools.undelete
iam.googleapis.com/workloadIdentityPools.update

Alternatively, you can use the following predefined role:

  • roles/iam.workloadIdentityPoolAdmin

Additionally, you need the permission to create IAM bindings:

  • resourcemanager.projects.setIamPolicy

You can also use predefined role:

  • roles/resourcemanager.projectIamAdmin

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages