Create and verify Google OIDC tokens

FR to provide an API to create and verify google OIDC tokens.

These `id_tokens` are based on service account type flows (service_ccount.json, compute engine, impersonatec credentials) and can be used to invoke _user services_  behind Cloud Run, Cloud Functions and  behind IAP

GCP services like nodejs and google-auth-python currently support an API to generate these tokens if given a serivce account credential or on compute engine.

if it helps, here are _mostly  raw_ imementations:

* [golang](https://gist.github.com/salrashid123/1fe93c1d0b01740d7edac6b79c982890)
* [python](https://gist.github.com/salrashid123/ebdd2456376bbe5209f3a7f2aee5b4b6)
* [java](https://gist.github.com/salrashid123/c2502938d90639a675216216abd6079f)
* [nodejs](https://gist.github.com/salrashid123/bcb60cdfa12943d7e60d5e4d012c8097)

Suggested interface would be 
- Create  `.getGoogleIdToken(audience)`

- Verify  `.verifyIdToken(token, audience, cert_url)`


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Create and verify Google OIDC tokens #2786

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Create and verify Google OIDC tokens #2786

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions