This is a shared codebase forgcloud-aio-authandgcloud-rest-auth
This library implements an IamClient class, which can be used to interact
with GCP public keys and URL sign blobs.
It also implements an IapToken class which is used for authorizing against
an Identity-Aware Proxy (IAP) secured GCP service. IAP uses identity tokens
which are specific to the target service and allows administrators to configure
a list of identities (ex. service accounts, users, or groups) that may access
the service. Therefore each IapToken instance corresponds to an ID token
which may be used to authorize against a single IAP service.
It additionally implements a Token class, which is used for authorizing
against Google Cloud. The other gcloud-aio-* package components accept a
Token instance as an argument; you can define a single token for all of
these components or define one for each. Each component corresponds to a given
Google Cloud service and each service requires various "scopes".
$ pip install --upgrade gcloud-{aio,rest}-authSee our docs.
Please see our contributing guide.