0 votes
in Cloud Computing by

You have an app in App Engine Standard Edition that needs to use Cloud SQL.
Which, among the following, is the best method to authorize all operations safely?

A. Configure the service account
B. Grant all authorizations in the app.yaml file
C. Use JWT
D. Grant all authorizations in the index.yaml file
E. Store the service account key in code

1 Answer

0 votes
by

Correct Answer A
B and D are wrong because it is not allowed to store security information or keys in configuration files.
C is wrong because JSON Web Token (JWT) is an open standard that defines a compact and self-contained way for securely transmitting information between parties as a JSON object.
You may sign a JWT token with a service account key and exchange the signed JWT with Google with an oAuth2 procedure.

Related questions

0 votes
asked Dec 2, 2021 in Cloud Computing by DavidAnderson
0 votes
asked Dec 2, 2021 in Cloud Computing by DavidAnderson
...