JK’s Blog

Home
Tags
Contact me
Podcast
Archive
About

Share this post

JK’s Blog
JK’s Blog
The Principle of Least Privilege - Serverless Expeditions
Copy link
Facebook
Email
Notes
More

The Principle of Least Privilege - Serverless Expeditions

A video demo of how to assign manage permissions and security-best practices for service accounts on Cloud Run

JK Gunnink
May 28, 2024

Share this post

JK’s Blog
JK’s Blog
The Principle of Least Privilege - Serverless Expeditions
Copy link
Facebook
Email
Notes
More
Share
Cross-post from JK’s Blog
Informational video on applying Least Privilege principles to serverless applications. -
JK Gunnink

There are two security settings for Cloud Run services: what can trigger the service and what the service can do when it runs. Developers often forget about the latter, which can lead to lost data and cost overruns.

I filmed this video with Martin showing how to tighten security by applying the Principle of Least Privilege to a Cloud Run service.

Enjoy!

P.S. If you don’t like videos, there’s a blog post I made last year covering pretty much exactly what this video was made from linked here.

Securing serverless APIs with Cloud Run

JK Gunnink
·
April 22, 2023
Securing serverless APIs with Cloud Run

When building out APIs on with Cloud Run, it’s easy to get lost in the fun of building and deploying and seeing your service running live without much thought to the rest of your cloud infrastructure. What permission does your service account that’s running in Cloud Run have access to? In this post I’ll show you how to se…

Read full story

Share this post

JK’s Blog
JK’s Blog
The Principle of Least Privilege - Serverless Expeditions
Copy link
Facebook
Email
Notes
More
Share

No posts

© 2025 JK Gunnink
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More