What do you mean with "there is no option to allow only local traffic to app engine services"? You can set your App Engine service to only accept ingress traffic from your VPC. Check this doc <https://cloud.google.com/appengine/docs/standard/go/application-security#ingress_controls> .
El lunes, 10 de mayo de 2021 a las 16:29:06 UTC+2, anat...@newventurevisions.com escribió: > I read a fair amount of documentation on App Engine but still not 100% > sure that what we are doing for our system is correct from the best > practices point of view. > > It would be good to find an engineer that "seen it all" and "done it all" > with google app engine and can answer a few very detailed questions on > application development for app engine. > Example: we use IAP to secure application access because there is no > option to allow only local traffic to app engine services. Google examples > are saying "get a token for every request to the app behind IAP". This is > slow. There should be a better way to do this. Not able to find someone who > knows what the alternatives are. > > So far all attempts to find such expert failed miserably. > > Any advice on where to look is appreciated. Hope this post does not > violates group rules. > > Thanks. > A > -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/7a9b329c-d814-4676-ab1d-75a8966e1d17n%40googlegroups.com.
