0

We have an HTTP triggered Cloud Function that has permissions set up via IAM. From our Python App Engine, how do we invoke the cloud function using a GCP Service Account?

Using the cloud functions service, we are able to call:

functions_service.projects().locations().functions().call(name=function_name)

This works, as the service adds the Bearer Authentication HTTP header. However, according to the docs (here and here), using the call() method to invoke the cloud function means we have a strict rate limit of 16/100s which is not suitable for production.

If we try calling the cloud function directly, via the https://[region]-[projectId].cloudfunctions.net/[functionName] URL, it does not authenticate (responds with 401), even with the Bearer Authentication HTTP header described above.

Improve this question
3
  • Where are you seeing this quota limit? The invoke quota is 100,000,000 per 100 seconds. cloud.google.com/functions/quotas#rate_limits Commented Feb 28, 2020 at 19:10
  • @JohnHanley in the link you provided under "API calls (CALL)" Commented Mar 2, 2020 at 19:42
  • For what you mention, what you are trying to achieve is similar to this, if you need to use a service account, I would recommend just to authenticate it in the application when you are going to call the function Commented Mar 3, 2020 at 9:50
Related questions
53
How do you access an authenticated Google App Engine service from a (non-web) python client?
2
Google App Engine (python) authorization web services /third party client
6
How to authenticate google cloud functions for access to secure app engine endpoints
Load 7 more related questions Show fewer related questions

0

Reset to default

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.