Hello, I have 2 services deployed in the standard app engine. These services are both python 3.8 django projects. They share data between each other via an API interface. With my current IAP settings, service 1 is not authorised to make requests to service 2 due to the request header not having the correct token.
What is the best way to give permissions to the services within the same App engine so that they can send API requests to each other? I thought they would have had the permissions granted if the app engine service account has the role of IAP-secured web app user. Do I need to create JWT authentication tokens within the API code in each service? I have read this guide: https://cloud.google.com/iap/docs/signed-headers-howto Regards David -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/f048cf8d-026f-487b-997f-0c104c3b5b32n%40googlegroups.com.
