Unit test for impersonation #4

mshudrak · 2022-07-18T17:54:20Z

We currently do not cover SA impersonation with unit tests.

ggold7046 · 2023-02-25T13:26:57Z

Hi @mshudrak , Could you guide me on this topic ? Could you explanation little bit more on this ?

ghost · 2023-02-27T20:45:43Z

hi @mshudrak , Can you elloborate please?

mshudrak · 2023-02-28T14:55:00Z

Sorry for the long response. Well, this is not a simple issue. As you can see I removed "good first issue" tag on Jan 18 since it requires editor access on test-gcp-project. However, if you really want to play with it you can setup your own GCP project. What we basically need is to setup GCP service account that can impersonate other accounts and write unit test for that.

More info: https://cloud.google.com/iam/docs/impersonating-service-accounts, https://medium.com/@tanujbolisetty/gcp-impersonate-service-accounts-36eaa247f87c
Corresponding code: https://github.com/google/gcp_scanner/blob/main/src/gcp_scanner/credsdb.py#L294

mshudrak added good first issue Good for newcomers enhancement New feature or request and removed good first issue Good for newcomers labels Jan 18, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Unit test for impersonation #4

Unit test for impersonation #4

mshudrak commented Jul 18, 2022

ggold7046 commented Feb 25, 2023

ghost commented Feb 27, 2023

mshudrak commented Feb 28, 2023

Unit test for impersonation #4

Unit test for impersonation #4

Comments

mshudrak commented Jul 18, 2022

ggold7046 commented Feb 25, 2023

ghost commented Feb 27, 2023

mshudrak commented Feb 28, 2023