Method 1 – User Application Default Credentials (“ADCs”)
Application Default Credentials (ADC) provide a method to get credentials used in calling Google APIs. The gcloud auth application-default command group allows you to manage active credentials on your machine that are used for local application development.
These credentials are only used by Google client libraries in your own application.
To use your own user credentials for your application to access an API, run: This will take you through a web flow to acquire new user credentials.
$ gcloud auth application-default login
Code language: JavaScript (javascript)Method 2 – Running Terraform on Google Cloud
If you are running Terraform in a machine on Google Cloud, you can configure that instance or cluster to use a Google Service Account. This allows Terraform to authenticate to Google Cloud without a separate credential/authentication file. Ensure that the scope of the VM/Cluster is set to or includes https://www.googleapis.com/auth/cloud-platform.
Method – 3 – Running Terraform Outside of Google Cloud – OIDC based federation
If you are running Terraform outside of Google Cloud, generate an external credential configuration file (example for OIDC based federation) or a service account key file and set the “GOOGLE_APPLICATION_CREDENTIALS” environment variable to the path of the JSON file. Terraform will use that file for authentication. Terraform supports the full range of authentication options documented for Google Cloud.
To create a service account and have your application use it for API access, run:
$ gcloud iam service-accounts create my-account
$ gcloud iam service-accounts keys create key.json --iam-account=my-account@my-project.iam.gserviceaccount.com
$ export GOOGLE_APPLICATION_CREDENTIALS=key.json
# Remove the newline characters from your JSON key file and then paste the credentials into the environment variable value field. You can use the tr command to strip newline characters.
$ cat key.json | tr -s '\n' ' '
Code language: PHP (php)Useful COMMANDS
# Acquire new user credentials to use for Application Default Credentials.
gcloud auth application-default login
# Print an access token for your current Application Default Credentials.
$ gcloud auth print-access-token
# Revoke previously generated Application Default Credentials.
$ gcloud auth revoke
# Update or add a quota project in application default credentials (ADC).
$ gcloud auth set-quota-projectCode language: PHP (php)
Iโm a DevOps/SRE/DevSecOps/Cloud Expert passionate about sharing knowledge and experiences. I have worked at Cotocus. I share tech blog at DevOps School, travel stories at Holiday Landmark, stock market tips at Stocks Mantra, health and fitness guidance at My Medic Plus, product reviews at TrueReviewNow , and SEO strategies at Wizbrand.
Do you want to learn Quantum Computing?
Please find my social handles as below;
Rajesh Kumar Personal Website
Rajesh Kumar at YOUTUBE
Rajesh Kumar at INSTAGRAM
Rajesh Kumar at X
Rajesh Kumar at FACEBOOK
Rajesh Kumar at LINKEDIN
Rajesh Kumar at WIZBRAND
Find Trusted Cardiac Hospitals
Compare heart hospitals by city and services โ all in one place.
Explore Hospitals