Pierre Villard created NIFI-15166:
-------------------------------------
Summary: Add support for GCP Workload Identity Federation to
GCPCredentialsControllerService
Key: NIFI-15166
URL: https://issues.apache.org/jira/browse/NIFI-15166
Project: Apache NiFi
Issue Type: Improvement
Components: Extensions
Reporter: Pierre Villard
Assignee: Pierre Villard
The goal is to add support for Workload Identity Federation to the GCP
Credentials Controller Service in order to authenticate against GCP services
using tokens issued by an external identity provider. This token is then
exchanged against a GCP token via the STS endpoint exposed by Google Cloud and
used to authenticate against the GCP services.
For the initial implementation, we are not adding support for service account
impersonation. This will be added as a follow up effort.
[https://docs.cloud.google.com/iam/docs/workload-identity-federation]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
