Re: [google-appengine] Re: Securing access between GAE applications

Yes, I'm pretty sure that Google strips that header from any external requests, so it can't be spoofed. I can't find anything that explicitly says that in the official documentation, but there are hints in the following sources. If I were you, I would verify that this is true before you rely on

[google-appengine] Re: Securing access between GAE applications

That sound like a great idea, but does AppEngine guarantees that there is no way to spoof the header? I can always just make a curl request with the header set, and the project id is also a part of the URL, isn't it? W dniu środa, 4 stycznia 2017 13:06:01 UTC-8 użytkownik Evan Jones napisał: >

[google-appengine] Re: GWT Client for AppEngine Endpoints

The tutorial you linked to is for Gradle + Android Studio + Endpoints, but not for GWT + Endpoints. I have Gradle + Android Studio + Endpoints working in modules for Android and (Linux desktop). Can you point me at a tutorial or other documentation for GWT + Endpoints? Googling for one has

[google-appengine] Re: Securing access between GAE applications

You can check the X-Appengine-Inbound-Appid header on requests coming it to your service. On App Engine, it will be set by Google, so you can trust it. Check that it matches the project(s) you expect, and return some HTTP error if it doesn't match. See:

[google-appengine] Securing access between GAE applications

Hi google-appengine, I started playing with GAE a couple of weeks ago and absolutely love it. I created a bunch of REST services with Go and deployed them to GAE. I've also created a webapp that talks to my backend services. Now, I want to handle the user authentication with Auth0 on the webapp

[google-appengine] Re: GMail signature "too long"

Hey Martin, Unfortunately this Google Discussion Group is for general Google Cloud App Engine product discussions only, and you will therefore not be able to find any Gmail experts on here that would be able to answer your question. I recommended looking

[google-appengine] Re: App Engine to Compute Engine communication via internal IP

As Adam mentioned, this is only possible right now with the flex. However we do know this is a problem and are working towards a solution for standard, nothing more to report at this time. On Friday, December 30, 2016 at 1:53:53 PM UTC-8, Nick (Cloud Platform Support) wrote: > > Hey Jitenda,

[google-appengine] GMail signature "too long"

Hi A few months back my gmail signature disappeared!? I am trying to set it up again but cannot get my company logo to appear in it! I get the "signature is too long" message when I try to save it. I have experimented with condensing the text etc and making the logo smaller but as soon as I

[google-appengine] Re: HIPAA for Google Datastore and GAE standard?

Thanks for taking the time to respond. As we are moving towards HIPAA in the immediate future we will start planning the migration of our system to the covered products. As far as I can tell this is what we need to do (a very rough outline): - AppEngine Standard environment for java -> move the