API Keys are a way to authenticate without needing a principal. This is convenient for first time users, who often get tripped up by Google's crazy authentication schemes.

https://cloud.google.com/docs/authentication/api-keys-use

• Introduce ApiKey support
  • Add an ApiKeyOption
  • Set x-goog-api-key headers over gRPC
  • Update guac.dox to mention API Key authentication
• Set x-goog-api-key over REST.
  • We cannot have an integration test. To my knowledge, none of the REST based services currently support API keys.
  • Make sure we censor API keys in any logs/telemetry we produce.

    google-cloud-cpp/google/cloud/internal/curl_wrappers.cc

    Line 190 in 2cb2c74

    std::string DebugCensored(absl::string_view msg, absl::string_view payload) {

• Add a sample like this in Python.
  • Looks like it'd be nice to have one that creates an API key using our apikeys client too.
  • We will have to clean up any leaked keys too. these are dangerous.