Hi Fabian, It depends if you are using standard or flexible environment.
App engine Flex environment <https://cloud.google.com/appengine/docs/flexible/>is built on the Google Compute Engine and consequently, it supports the Virtual Private Cloud networking system. Using the VPC networks, you can configure firewall rules <https://cloud.google.com/vpc/docs/firewalls> that would use Instance Tags to determine the target or source component in a firewall rule. Hence, you simply have to configure the app.yaml files of the target service/version to use the appropriate instance tags. For both App Engine Standard and Flexible environments, you may use Cloud IAP <https://cloud.google.com/iap/docs/app-engine-quickstart>. There is also a feature request on providing firewall rules on a service based level <https://issuetracker.google.com/77891432>, however there is no ETA for the implementation and you may star the public issue tracker for any update in the future. On Thursday, April 29, 2021 at 9:47:13 AM UTC-4 Fabian Hagen wrote: > How can I secure specific services within my AppEngine project against > public access so only other services within the same project can access it? > > Firewall rules can not be applied to single services.. Do I have to use > this: https://cloud.google.com/solutions/authenticating-web-users > > Thanks! > -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/82292c91-aec9-4740-80cc-117719d77872n%40googlegroups.com.
