Hello,
As you mentioned, a good way of doing this would be using secret manager. This is the official document <https://cloud.google.com/build/docs/securing-builds/use-secrets#yaml_1> that explains how to use secret manager and should help you in getting your curl to work properly. On Monday, June 14, 2021 at 1:37:09 PM UTC-4 bha...@gmail.com wrote: > > Hello, > > I've added a step to curl into an endpoint in my app as follows: > > name: gcr.io/google.com/cloudsdktool/cloud-sdk > entrypoint: "bash" > args: > - "-c" > - | > RESPONSE=$(curl -o /dev/null -s -w "%{http_code}" -H "X-AppEngine: 1" > $_APP_BASE_URL) > if [ "200" != "$$RESPONSE" ]; > then > exit 1; > fi > > I would like to authenticate this request on my app level. > > What are my options? > > To generate a token, store it inside Secret Manager and inside my DB or > env variables. Pass the token via header (get) or payload (post) and then > compare the two? > > Any more secure ways of doing this? > > Thanks > Bill > -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/43b093a9-cab0-450d-9293-d6cc76efae90n%40googlegroups.com.
