The Principle of Least Privilege - Serverless Expeditions
A video demo of how to assign manage permissions and security-best practices for service accounts on Cloud Run
There are two security settings for Cloud Run services: what can trigger the service and what the service can do when it runs. Developers often forget about the latter, which can lead to lost data and cost overruns.
I filmed this video with Martin showing how to tighten security by applying the Principle of Least Privilege to a Cloud Run service.
Enjoy!
P.S. If you don’t like videos, there’s a blog post I made last year covering pretty much exactly what this video was made from linked here.
Securing serverless APIs with Cloud Run
When building out APIs on with Cloud Run, it’s easy to get lost in the fun of building and deploying and seeing your service running live without much thought to the rest of your cloud infrastructure. What permission does your service account that’s running in Cloud Run have access to? In this post I’ll show you how to se…